frontend/pages/api/nauth/[...nextauth].js (view raw)
1import NextAuth from 'next-auth';
2import CredentialsProvider from 'next-auth/providers/credentials';
3import GoogleProvider from 'next-auth/providers/google';
4
5const {STRAPI_URL = 'http://localhost:1337'} = process.env;
6
7export default NextAuth({
8 providers: [
9 CredentialsProvider({
10 name: 'Strapi',
11 credentials: {
12 email: {label: 'Email', type: 'text'},
13 password: {label: 'Password', type: 'password'},
14 },
15 async authorize(credentials, req) {
16 const response = await fetch(`${STRAPI_URL}/api/auth/local`, {
17 method: 'POST',
18 headers: {'Content-Type': 'application/json'},
19 body: JSON.stringify({
20 identifier: credentials.email,
21 password: credentials.password,
22 }),
23 });
24 const data = await response.json();
25 if (data?.error?.message === 'Your account email is not confirmed')
26 throw new Error('EmailNotConfirmed');
27 else if (!data?.jwt) return null;
28 const {user, jwt} = data;
29 return {...user, jwt};
30 },
31 }),
32 GoogleProvider({
33 clientId: process.env.GOOGLE_CLIENT_ID,
34 clientSecret: process.env.GOOGLE_CLIENT_SECRET,
35 }),
36 ],
37 session: {
38 jwt: true,
39 },
40 callbacks: {
41 jwt: async params => {
42 const {token, user, account} = params;
43
44 // Google Auth
45 if (account?.provider === 'google') {
46 const strapiUrl = process.env.STRAPI_URL || 'http://localhost:1337';
47 const response = await fetch(
48 `${strapiUrl}/api/auth/${account.provider}/callback?access_token=${account?.access_token}`
49 );
50 const data = await response.json();
51 token.id = data.user.id;
52 token.jwt = data.jwt;
53 token.email = data.user.email;
54 token.username = data.user.firstname;
55 token.lang = data.user.lang?.toLowerCase();
56 token.provider = account.provider;
57 token.userCreatedAt = data.user.createdAt;
58 }
59
60 // Strapi Auth
61 else if (user) {
62 token.id = user.id;
63 token.jwt = user.jwt;
64 token.email = user.email;
65 token.username = user.firstname;
66 token.lang = user.lang?.toLowerCase();
67 token.provider = account.provider;
68 token.userCreatedAt = user.createdAt;
69 }
70
71 return token;
72 },
73 session: async params => {
74 const {session, token} = params;
75 if (session) {
76 session.token = token;
77 session.user.name = token.username;
78 session.user.lang = token.lang;
79 }
80 return session;
81 },
82 async redirect({url, baseUrl}) {
83 if (url.startsWith('/')) return `${baseUrl}${url}`;
84 else if (new URL(url).host === new URL(baseUrl).host)
85 return `${baseUrl}/dashboard`;
86 else return baseUrl;
87 },
88 },
89 pages: {
90 signIn: '/auth/login',
91 error: '/auth/login',
92 },
93});