Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Missing actions for login and signup #1

Open
adamtretera opened this issue Mar 13, 2024 · 2 comments
Open

Missing actions for login and signup #1

adamtretera opened this issue Mar 13, 2024 · 2 comments

Comments

@adamtretera
Copy link

Hi, I dont know if its intentional but you are missing the acctions for login / signup ?

The demo also would be much better if there was some pocketbase call ?
@tsensei
Copy link
Owner

tsensei commented Mar 13, 2024

@adamtretera You can write your signup logic with the APIs that pocketbase provide, and login in the same way as demonstrated in the pocketbase docs. When you log in, all the necessary tokens will be saved in localStorage (how pocketbase does it) but also in cookies (we need it for nextjs server components and authenticated routes)

You can simply modify the middleware file to specify which route to check the authStore before returning a response

middleware.ts

const cookieStore = cookies();
const { authStore } = createServerClient(cookieStore);

  // 1. Check if the request is for the /login or /not-authorized route
  if (
    request.nextUrl.pathname === "/login" ||
    request.nextUrl.pathname === "/not-authorized"
  ) {
    if (authStore.isValid) {
      return NextResponse.redirect(basePath);
    }
    return;
  }

  // 2. Require authentication for all other routes (including root)
  if (!authStore.isValid) {
    // Redirect to login page if not authenticated
    const redirectPath = `${basePath}/login`;

    return NextResponse.redirect(redirectPath);
  }

This snippet I quickly copied from another of my project, this should make sense - the paths specified in the matcher will not be intercepted by our middleware, and for the intercepted paths, you have the authStore, and its upto you what you want to do as a response

@adamtretera
Copy link
Author

adamtretera commented Mar 13, 2024
edited
Loading

@tsensei Thanks for quick reply, so you are sign-in for example in server action using the pb.authWithPassword() =>

and you can then display in client component pb.authStore.model

Because this doesnt work for me, I am actaully good with using the pb just on the server side, but when I sign-in.

My component

async function getUser() {
  const cookieStore = cookies();
  const pb = createServerClient(cookieStore);

  console.log("authMiddleware", pb.authStore.model);

  return pb.authStore.model;
}

My login action

export const loginAction = action(
  loginFormSchema,
  async ({ email, password }) => {
    try {
      const { token, record: model } = await loginUser({ email, password });

      return { success: model };
    } catch (error) {
      console.log("error", error);

      if (isErrorWithMessage(error)) {
        return { failure: error.message };
      }

      return { failure: "Auth Error" };
    }
  },
);

yeah and the pb function

export async function loginUser(user: LoginFormType) {
  return await pb
    .collection(Collections.Users)
    .authWithPassword<LoginFormType>(user.email, user.password);
}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@adamtretera @tsensei