NextJS starter pack with
This is a starter kit for authentication in NextJS. It is a fork from rest-nextjs-api-routes-auth, read more in the installation instructions
This repo illustrates user authentication logic with NextAuth v4 combined with credentials using the default configuration and the Prisma Adapter. No callbacks are used or needed for the flow to work - you can use both combined.
install
git clone https://github.com/mikemajara/nextjs-prisma-next-auth-credentials
yarn install
copy environment and fill in with your data
cp .env .env.local
run
yarn dev
Setting up credentials is generally not recommended "with your database because of the security implications most people aren't ware of.", but they are widely used and much needed for applications, specially at the start of a project. You don't want to start dealing with OAuth from the start, but need some user management.
Nextauth has very too simple instructions and barely pays attention to credentials, so I decided to set up this project to experiment with the whole auth flow. My key takeaways are:
- Default settings are enough to use both OAuth providers and your own credentials.
- You should be able to authorize using any given API (this project uses NextJS API to check against the same prisma DB used with an adapter)
- Session JWT is needed (as opposed to database strategy)
If you are using Gmail to send e-mails for passwordless authentication, make sure you enable Less secure app access. Go to Google > Manage Account > Security > Less secure app access, turn it on. If you don't, google will reject your user & password accessed by nodemailer.