plebdevs/src/pages/api/auth/[...nextauth].js

import NextAuth from "next-auth";
import CredentialsProvider from "next-auth/providers/credentials";
import EmailProvider from "next-auth/providers/email";
import GithubProvider from "next-auth/providers/github";
import { PrismaAdapter } from "@next-auth/prisma-adapter";
import prisma from "@/db/prisma";
import nodemailer from 'nodemailer';
import { findKind0Fields } from "@/utils/nostr";
import { generateSecretKey, getPublicKey } from 'nostr-tools/pure';
import { bytesToHex } from '@noble/hashes/utils';
import { updateUser, getUserByPubkey, createUser, getUserById, getUserByEmail } from "@/db/models/userModels";
import { createRole } from "@/db/models/roleModels";
import appConfig from "@/config/appConfig";
import NDK from "@nostr-dev-kit/ndk";

// Initialize NDK for Nostr interactions
const ndk = new NDK({
    explicitRelayUrls: appConfig.defaultRelayUrls
});

/**
 * Handles Nostr profile synchronization and user creation/update
 * @param {string} pubkey - User's public key
 * @returns {Promise<Object|null>} User object or null if failed
 */
const syncNostrProfile = async (pubkey) => {
    await ndk.connect();
    const user = ndk.getUser({ pubkey });

    try {
        const profile = await user.fetchProfile();
        const fields = await findKind0Fields(profile);
        let dbUser = await getUserByPubkey(pubkey);

        if (dbUser) {
            // Update existing user if kind0 fields differ
            if (fields.avatar !== dbUser.avatar || fields.username !== dbUser.username) {
                const updates = {
                    ...(fields.avatar !== dbUser.avatar && { avatar: fields.avatar }),
                    ...(fields.username !== dbUser.username && { 
                        username: fields.username, 
                        name: fields.username 
                    })
                };
                await updateUser(dbUser.id, updates);
                dbUser = await getUserByPubkey(pubkey);
            }
        } else {
            // Create new user
            const username = fields.username || pubkey.slice(0, 8);
            const payload = { 
                pubkey, 
                username, 
                avatar: fields.avatar, 
                name: username 
            };

            dbUser = await createUser(payload);

            // Create author role if applicable
            if (appConfig.authorPubkeys.includes(pubkey)) {
                const role = await createRole({
                    userId: dbUser.id,
                    admin: true,
                    subscribed: false,
                });
                
                if (role) {
                    await updateUser(dbUser.id, { role: role.id });
                    dbUser = await getUserByPubkey(pubkey);
                }
            }
        }

        return { ...dbUser, kind0: fields };
    } catch (error) {
        console.error("Nostr profile sync error:", error);
        return null;
    }
};

/**
 * Generates an ephemeral keypair for non-Nostr login methods
 * @returns {Object} Object containing public and private keys
 */
const generateEphemeralKeypair = () => {
    const privkey = generateSecretKey();
    const pubkey = getPublicKey(privkey);
    // pubkey is hex, privkey is bytes need to convert to hex
    return {
        pubkey,
        privkey: bytesToHex(privkey)
    };
};

export const authOptions = {
    adapter: PrismaAdapter(prisma),
    providers: [
        // Nostr login provider
        CredentialsProvider({
            id: "nostr",
            name: "Nostr",
            credentials: {
                pubkey: { label: "Public Key", type: "text" }
            },
            authorize: async (credentials) => {
                if (!credentials?.pubkey) return null;
                return await syncNostrProfile(credentials.pubkey);
            }
        }),

        // Anonymous login provider
        CredentialsProvider({
            id: "anonymous",
            name: "Anonymous",
            credentials: {
                pubkey: { label: "Public Key", type: "text" },
                privkey: { label: "Private Key", type: "text" }
            },
            authorize: async (credentials) => {
                const keys = (credentials?.pubkey && credentials?.pubkey !== 'null' && credentials?.privkey && credentials?.privkey !== 'null') ? 
                    { pubkey: credentials.pubkey, privkey: credentials.privkey } : 
                    generateEphemeralKeypair();

                let user = await getUserByPubkey(keys.pubkey);
                if (!user) {
                    user = await createUser({
                        ...keys,
                        username: `anon-${keys.pubkey.slice(0, 8)}`,
                        name: `anon-${keys.pubkey.slice(0, 8)}`
                    });
                }
                return { ...user, privkey: keys.privkey };
            }
        }),

        // Email provider with simpler configuration
        EmailProvider({
            server: {
                host: process.env.EMAIL_SERVER_HOST,
                port: process.env.EMAIL_SERVER_PORT,
                auth: {
                    user: process.env.EMAIL_SERVER_USER,
                    pass: process.env.EMAIL_SERVER_PASSWORD
                }
            },
            from: process.env.EMAIL_FROM
        }),

        // Github provider with ephemeral keypair generation
        GithubProvider({
            clientId: process.env.GITHUB_CLIENT_ID,
            clientSecret: process.env.GITHUB_CLIENT_SECRET,
            profile: async (profile) => {
                const keys = generateEphemeralKeypair();
                return {
                    id: profile.id.toString(),
                    pubkey: keys.pubkey,
                    privkey: keys.privkey,
                    name: profile.login,
                    email: profile.email,
                    avatar: profile.avatar_url
                };
            }
        })
    ],
    callbacks: {
        // Move email handling to the signIn callback
        async signIn({ user, account, profile, email }) {
            // Only handle email provider sign ins
            if (account?.provider === "email") {
                try {
                    // Check if this is an existing user
                    const existingUser = await getUserByEmail(user.email);
                    
                    if (!existingUser && user) {
                        // First time login: generate keypair
                        const keys = generateEphemeralKeypair();

                        const newUser = {
                            pubkey: keys.pubkey,
                            privkey: keys.privkey,
                            username: user.email.split('@')[0],
                            email: user.email,
                            avatar: user.image,
                            name: user.email.split('@')[0],
                        }
                        
                        // Update the user with the new keypair
                        const createdUser = await createUser(newUser);
                        console.log("Created user", createdUser);
                        return createdUser;
                    } else {
                        console.log("User already exists", existingUser);
                    }
                    
                    return true;
                } catch (error) {
                    console.error("Email sign in error:", error);
                    return false;
                }
            }
            
            return true; // Allow other provider sign ins
        },
        async session({ session, user, token }) {
            const userData = token.user || user;
            
            if (userData) {
                const fullUser = await getUserById(userData.id);
                
                // Get the user's GitHub account if it exists
                const githubAccount = await prisma.account.findFirst({
                    where: {
                        userId: fullUser.id,
                        provider: 'github'
                    }
                });
                
                session.user = {
                    ...session.user,
                    id: fullUser.id,
                    pubkey: fullUser.pubkey,
                    privkey: fullUser.privkey,
                    role: fullUser.role,
                    username: fullUser.username,
                    avatar: fullUser.avatar,
                    name: fullUser.name,
                    userCourses: fullUser.userCourses,
                    userLessons: fullUser.userLessons,
                    purchased: fullUser.purchased,
                    nip05: fullUser.nip05,
                    lightningAddress: fullUser.lightningAddress
                };

                // Add GitHub account info to session if it exists
                if (githubAccount) {
                    session.account = {
                        provider: githubAccount.provider,
                        type: githubAccount.type,
                        providerAccountId: githubAccount.providerAccountId,
                        access_token: githubAccount.access_token,
                        token_type: githubAccount.token_type,
                        scope: githubAccount.scope,
                    };
                }
            }
            return session;
        },
        async jwt({ token, user, account, profile }) {
            // If we are linking a github account to an existing email or anon account (we have privkey)
            if (account?.provider === "github" && user?.id && user?.pubkey && user?.privkey) {
                console.log("Linking GitHub account to existing user", account, profile);
                try {
                    // First update the user's profile with GitHub info
                    const updatedUser = await updateUser(user.id, {
                        name: profile?.login || profile?.name,
                        username: profile?.login || profile?.name,
                        avatar: profile?.avatar_url,
                        image: profile?.avatar_url,
                    });

                    console.log("Updated user", updatedUser);

                    // Get the updated user
                    const existingUser = await getUserById(updatedUser?.id);
                    if (existingUser) {
                        token.user = existingUser;
                    }
                } catch (error) {
                    console.error("Error linking GitHub account:", error);
                }
            }

            // If we are linking a github account to a nostr account (we do not have privkey)
            if (account?.provider === "github" && account?.userId && account?.pubkey) {
                try {
                    // I think we just need auth + account in session and thats it?
                } catch (error) {
                    console.error("Error linking GitHub account:", error);
                }
            }

            if (user) {
                token.user = user;
            }
            if (account) {
                token.account = account;
            }
            return token;
        }
    },
    session: {
        strategy: 'jwt',
        maxAge: 30 * 24 * 60 * 60, // 30 days
    },
    debug: process.env.NODE_ENV === 'development',
};

export default NextAuth(authOptions);
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`import NextAuth from "next-auth";`
			`import CredentialsProvider from "next-auth/providers/credentials";`
Email login is working 2024-09-06 12:32:23 -05:00			`import EmailProvider from "next-auth/providers/email";`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`import GithubProvider from "next-auth/providers/github";`
Email login is working 2024-09-06 12:32:23 -05:00			`import { PrismaAdapter } from "@next-auth/prisma-adapter";`
			`import prisma from "@/db/prisma";`
Add nodemailer import 2024-10-06 15:49:32 -05:00			`import nodemailer from 'nodemailer';`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`import { findKind0Fields } from "@/utils/nostr";`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`import { generateSecretKey, getPublicKey } from 'nostr-tools/pure';`
			`import { bytesToHex } from '@noble/hashes/utils';`
			`import { updateUser, getUserByPubkey, createUser, getUserById, getUserByEmail } from "@/db/models/userModels";`
Added glow on profile, added isAdmin hook and blocked components / pages that nly admins should access 2024-09-11 16:48:56 -05:00			`import { createRole } from "@/db/models/roleModels";`
Good stuff 2024-09-17 13:55:51 -05:00			`import appConfig from "@/config/appConfig";`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00			`import NDK from "@nostr-dev-kit/ndk";`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00
Initial auth refactor 2024-12-08 17:24:08 -06:00			`// Initialize NDK for Nostr interactions`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00			`const ndk = new NDK({`
			`explicitRelayUrls: appConfig.defaultRelayUrls`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`});`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00
Initial auth refactor 2024-12-08 17:24:08 -06:00			`/**`
			`* Handles Nostr profile synchronization and user creation/update`
			`* @param {string} pubkey - User's public key`
			`* @returns {Promise<Object\|null>} User object or null if failed`
			`*/`
			`const syncNostrProfile = async (pubkey) => {`
Payment flow for resources works 2024-08-12 17:27:47 -05:00			`await ndk.connect();`
			`const user = ndk.getUser({ pubkey });`

			`try {`
			`const profile = await user.fetchProfile();`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`const fields = await findKind0Fields(profile);`
Secure user endponts with session, dont require calling endpoints from nextauth, call models instead so we can completely secure the endpoints 2024-10-02 16:58:36 -05:00			`let dbUser = await getUserByPubkey(pubkey);`
Fix auth bg 2024-10-04 16:41:49 -05:00
Secure user endponts with session, dont require calling endpoints from nextauth, call models instead so we can completely secure the endpoints 2024-10-02 16:58:36 -05:00			`if (dbUser) {`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`// Update existing user if kind0 fields differ`
			`if (fields.avatar !== dbUser.avatar \|\| fields.username !== dbUser.username) {`
			`const updates = {`
			`...(fields.avatar !== dbUser.avatar && { avatar: fields.avatar }),`
			`...(fields.username !== dbUser.username && {`
			`username: fields.username,`
			`name: fields.username`
			`})`
			`};`
			`await updateUser(dbUser.id, updates);`
			`dbUser = await getUserByPubkey(pubkey);`
Fix auth bg 2024-10-04 16:41:49 -05:00			`}`
Secure user endponts with session, dont require calling endpoints from nextauth, call models instead so we can completely secure the endpoints 2024-10-02 16:58:36 -05:00			`} else {`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`// Create new user`
			`const username = fields.username \|\| pubkey.slice(0, 8);`
			`const payload = {`
			`pubkey,`
			`username,`
			`avatar: fields.avatar,`
			`name: username`
			`};`
Payment flow for resources works 2024-08-12 17:27:47 -05:00
Initial auth refactor 2024-12-08 17:24:08 -06:00			`dbUser = await createUser(payload);`
Fix auth bg 2024-10-04 16:41:49 -05:00
Initial auth refactor 2024-12-08 17:24:08 -06:00			`// Create author role if applicable`
			`if (appConfig.authorPubkeys.includes(pubkey)) {`
			`const role = await createRole({`
			`userId: dbUser.id,`
			`admin: true,`
			`subscribed: false,`
			`});`

			`if (role) {`
			`await updateUser(dbUser.id, { role: role.id });`
			`dbUser = await getUserByPubkey(pubkey);`
Fix auth bg 2024-10-04 16:41:49 -05:00			`}`
Payment flow for resources works 2024-08-12 17:27:47 -05:00			`}`
			`}`
Initial auth refactor 2024-12-08 17:24:08 -06:00
			`return { ...dbUser, kind0: fields };`
Payment flow for resources works 2024-08-12 17:27:47 -05:00			`} catch (error) {`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`console.error("Nostr profile sync error:", error);`
			`return null;`
Payment flow for resources works 2024-08-12 17:27:47 -05:00			`}`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`};`

			`/**`
			`* Generates an ephemeral keypair for non-Nostr login methods`
			`* @returns {Object} Object containing public and private keys`
			`*/`
			`const generateEphemeralKeypair = () => {`
			`const privkey = generateSecretKey();`
			`const pubkey = getPublicKey(privkey);`
			`// pubkey is hex, privkey is bytes need to convert to hex`
			`return {`
			`pubkey,`
			`privkey: bytesToHex(privkey)`
			`};`
			`};`
Payment flow for resources works 2024-08-12 17:27:47 -05:00
Signed authenticated video urls work through digital ocean, just a simple example down for now 2024-09-08 18:41:51 -05:00			`export const authOptions = {`
Email login is working 2024-09-06 12:32:23 -05:00			`adapter: PrismaAdapter(prisma),`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`providers: [`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`// Nostr login provider`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`CredentialsProvider({`
			`id: "nostr",`
			`name: "Nostr",`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`credentials: {`
			`pubkey: { label: "Public Key", type: "text" }`
			`},`
			`authorize: async (credentials) => {`
			`if (!credentials?.pubkey) return null;`
			`return await syncNostrProfile(credentials.pubkey);`
			`}`
			`}),`

			`// Anonymous login provider`
			`CredentialsProvider({`
			`id: "anonymous",`
			`name: "Anonymous",`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`credentials: {`
			`pubkey: { label: "Public Key", type: "text" },`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`privkey: { label: "Private Key", type: "text" }`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`},`
			`authorize: async (credentials) => {`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`const keys = (credentials?.pubkey && credentials?.pubkey !== 'null' && credentials?.privkey && credentials?.privkey !== 'null') ?`
			`{ pubkey: credentials.pubkey, privkey: credentials.privkey } :`
			`generateEphemeralKeypair();`

			`let user = await getUserByPubkey(keys.pubkey);`
			`if (!user) {`
			`user = await createUser({`
			`...keys,`
			username: `anon-${keys.pubkey.slice(0, 8)}`,
			name: `anon-${keys.pubkey.slice(0, 8)}`
			`});`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`}`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`return { ...user, privkey: keys.privkey };`
			`}`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`}),`
Initial auth refactor 2024-12-08 17:24:08 -06:00
			`// Email provider with simpler configuration`
Email login is working 2024-09-06 12:32:23 -05:00			`EmailProvider({`
			`server: {`
			`host: process.env.EMAIL_SERVER_HOST,`
			`port: process.env.EMAIL_SERVER_PORT,`
			`auth: {`
			`user: process.env.EMAIL_SERVER_USER,`
			`pass: process.env.EMAIL_SERVER_PASSWORD`
			`}`
			`},`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`from: process.env.EMAIL_FROM`
Email login is working 2024-09-06 12:32:23 -05:00			`}),`
Initial auth refactor 2024-12-08 17:24:08 -06:00
			`// Github provider with ephemeral keypair generation`
github signup, creates user and kind0, can open nostr profile from plebdevs profile now 2024-11-18 16:42:40 -06:00			`GithubProvider({`
			`clientId: process.env.GITHUB_CLIENT_ID,`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00			`clientSecret: process.env.GITHUB_CLIENT_SECRET,`
			`profile: async (profile) => {`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`const keys = generateEphemeralKeypair();`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00			`return {`
			`id: profile.id.toString(),`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`pubkey: keys.pubkey,`
			`privkey: keys.privkey,`
fixed signup / login flow for github, added lessons and courses starting and completing in progress table 2024-11-19 16:02:11 -06:00			`name: profile.login,`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00			`email: profile.email,`
			`avatar: profile.avatar_url`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`};`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00			`}`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`})`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`],`
			`callbacks: {`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`// Move email handling to the signIn callback`
			`async signIn({ user, account, profile, email }) {`
			`// Only handle email provider sign ins`
			`if (account?.provider === "email") {`
			`try {`
			`// Check if this is an existing user`
			`const existingUser = await getUserByEmail(user.email);`

			`if (!existingUser && user) {`
			`// First time login: generate keypair`
			`const keys = generateEphemeralKeypair();`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00
Initial auth refactor 2024-12-08 17:24:08 -06:00			`const newUser = {`
			`pubkey: keys.pubkey,`
			`privkey: keys.privkey,`
			`username: user.email.split('@')[0],`
			`email: user.email,`
			`avatar: user.image,`
			`name: user.email.split('@')[0],`
			`}`

			`// Update the user with the new keypair`
			`const createdUser = await createUser(newUser);`
			`console.log("Created user", createdUser);`
			`return createdUser;`
			`} else {`
			`console.log("User already exists", existingUser);`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00			`}`
Initial auth refactor 2024-12-08 17:24:08 -06:00
			`return true;`
			`} catch (error) {`
			`console.error("Email sign in error:", error);`
			`return false;`
Can now link anon account with github, improvements to dev journey, maybe broke some auth stufff 2024-12-06 18:47:05 -06:00			`}`
			`}`
Initial auth refactor 2024-12-08 17:24:08 -06:00
			`return true; // Allow other provider sign ins`
Handle email logic in session callback 2024-10-06 16:53:36 -05:00			`},`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`async session({ session, user, token }) {`
			`const userData = token.user \|\| user;`

			`if (userData) {`
			`const fullUser = await getUserById(userData.id);`
fixed signup / login flow for github, added lessons and courses starting and completing in progress table 2024-11-19 16:02:11 -06:00
Initial auth refactor 2024-12-08 17:24:08 -06:00			`// Get the user's GitHub account if it exists`
			`const githubAccount = await prisma.account.findFirst({`
			`where: {`
			`userId: fullUser.id,`
			`provider: 'github'`
			`}`
			`});`
fixed signup / login flow for github, added lessons and courses starting and completing in progress table 2024-11-19 16:02:11 -06:00
			`session.user = {`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`...session.user,`
			`id: fullUser.id,`
			`pubkey: fullUser.pubkey,`
			`privkey: fullUser.privkey,`
			`role: fullUser.role,`
			`username: fullUser.username,`
			`avatar: fullUser.avatar,`
			`name: fullUser.name,`
			`userCourses: fullUser.userCourses,`
			`userLessons: fullUser.userLessons,`
			`purchased: fullUser.purchased,`
			`nip05: fullUser.nip05,`
			`lightningAddress: fullUser.lightningAddress`
fixed signup / login flow for github, added lessons and courses starting and completing in progress table 2024-11-19 16:02:11 -06:00			`};`

Initial auth refactor 2024-12-08 17:24:08 -06:00			`// Add GitHub account info to session if it exists`
			`if (githubAccount) {`
			`session.account = {`
			`provider: githubAccount.provider,`
			`type: githubAccount.type,`
			`providerAccountId: githubAccount.providerAccountId,`
			`access_token: githubAccount.access_token,`
			`token_type: githubAccount.token_type,`
			`scope: githubAccount.scope,`
			`};`
fixed signup / login flow for github, added lessons and courses starting and completing in progress table 2024-11-19 16:02:11 -06:00			`}`
Grabbing required github creds, populating contribution chart dynamically 2024-11-18 18:05:55 -06:00			`}`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`return session;`
			`},`
Github linking works 2024-12-09 12:43:33 -06:00			`async jwt({ token, user, account, profile }) {`
			`// If we are linking a github account to an existing email or anon account (we have privkey)`
			`if (account?.provider === "github" && user?.id && user?.pubkey && user?.privkey) {`
			`console.log("Linking GitHub account to existing user", account, profile);`
			`try {`
			`// First update the user's profile with GitHub info`
			`const updatedUser = await updateUser(user.id, {`
			`name: profile?.login \|\| profile?.name,`
			`username: profile?.login \|\| profile?.name,`
			`avatar: profile?.avatar_url,`
			`image: profile?.avatar_url,`
			`});`

			`console.log("Updated user", updatedUser);`

			`// Get the updated user`
			`const existingUser = await getUserById(updatedUser?.id);`
			`if (existingUser) {`
			`token.user = existingUser;`
			`}`
			`} catch (error) {`
			`console.error("Error linking GitHub account:", error);`
			`}`
			`}`

			`// If we are linking a github account to a nostr account (we do not have privkey)`
			`if (account?.provider === "github" && account?.userId && account?.pubkey) {`
			`try {`
			`// I think we just need auth + account in session and thats it?`
			`} catch (error) {`
			`console.error("Error linking GitHub account:", error);`
			`}`
			`}`

Initial auth refactor 2024-12-08 17:24:08 -06:00			`if (user) {`
			`token.user = user;`
Fixed anon login 2024-10-08 19:24:40 -05:00			`}`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`if (account) {`
			`token.account = account;`
			`}`
			`return token;`
			`}`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`},`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`session: {`
			`strategy: 'jwt',`
			`maxAge: 30 * 24 * 60 * 60, // 30 days`
Removed local storage and using next-auth with session for login and authentication 2024-08-07 16:02:13 -05:00			`},`
Initial auth refactor 2024-12-08 17:24:08 -06:00			`debug: process.env.NODE_ENV === 'development',`
Signed authenticated video urls work through digital ocean, just a simple example down for now 2024-09-08 18:41:51 -05:00			`};`

			`export default NextAuth(authOptions);`