add authentication with next-auth

2025-12-22 22:16:28 +01:00 · 2025-04-26 16:56:09 +02:00 · 2025-04-26 16:56:09 +02:00 · 759acde045
commit 759acde045
parent 5487bccd8d
11 changed files with 318 additions and 98 deletions
--- a/dashboard-app-course/auth.ts
+++ b/dashboard-app-course/auth.ts
@ -0,0 +1,42 @@
+import NextAuth from 'next-auth';
+import { authConfig } from './auth.config';
+import Credentials from 'next-auth/providers/credentials';
+import { z } from 'zod';
+import type { User } from '@/app/lib/definitions';
+import bcrypt from 'bcrypt';
+import postgres from 'postgres';
+ 
+const sql = postgres(process.env.POSTGRES_URL!, { ssl: 'require' });
+
+async function getUser(email: string): Promise<User | undefined> {
+    try{
+        const user = await sql<User[]>`SELECT * FROM users WHERE email=${email}`;
+        return user[0];
+    } catch(error){
+        console.error('Failed to fetch user:', error);
+        throw new Error('Failed to fetch user.');
+    }
+}
+
+export const { auth, signIn, signOut } = NextAuth({
+  ...authConfig,
+  providers: [Credentials({
+    async authorize(credentials){
+        const parsedCredentials = z
+        .object({ email: z.string().email(), password: z.string().min(6)})
+        .safeParse(credentials);
+
+        if(parsedCredentials.success){
+            const { email, password } = parsedCredentials.data;
+            const user = await getUser(email);
+            if(!user) return null;
+            const passwordsMatch = await bcrypt.compare(password, user.password);
+
+            if(passwordsMatch) return user;
+        }
+        
+        console.log('Invalid credentials');
+        return null;
+    },
+  })],
+});