auth.ts

import NextAuth from "next-auth";
import bcryptjs from "bcryptjs";
import GithubProvider from "next-auth/providers/github";
import GoogleProvider from "next-auth/providers/google";
import CredentialsProvider from "next-auth/providers/credentials";

import { PrismaAdapter } from "@auth/prisma-adapter";
import { prisma } from "@/db";
import { Role } from "@prisma/client";

declare module "next-auth" {
  // eslint-disable-next-line no-unused-vars
  interface User {
    role: Role;
    onboardingStatus: number | null;
  }
}

export const {
  handlers: { GET, POST },
  auth,
  signIn,
  signOut,
  // eslint-disable-next-line camelcase
  unstable_update,
} = NextAuth({
  session: {
    strategy: "jwt",
  },
  adapter: PrismaAdapter(prisma),
  pages: {
    newUser: "/sign-up/onboarding",
  },
  providers: [
    GithubProvider({
      clientId: process.env.GITHUB_CLIENT_ID!,
      clientSecret: process.env.GITHUB_CLIENT_SECRET!,
    }),
    GoogleProvider({
      clientId: process.env.GOOGLE_CLIENT_ID!,
      clientSecret: process.env.GOOGLE_CLIENT_SECRET!,
    }),
    CredentialsProvider({
      name: "credentials",
      credentials: {
        email: {
          label: "Email",
          type: "email",
          placeholder: "Provider your email",
        },
        password: {
          label: "Password",
          type: "password",
          placeholder: "Provider your password",
        },
      },
      async authorize(credentials, request) {
        const { email, password: credentialsPassword } = credentials;

        const user = await prisma.user.findUnique({
          where: {
            email: email as string,
          },
        });

        if (user) {
          const passwordCheck = await bcryptjs.compare(
            credentialsPassword as string,
            user.password as string
          );
          if (passwordCheck) {
            return user;
          } else {
            throw new Error("Invalid password");
          }
        } else {
          return null;
        }
      },
    }),
  ],
  callbacks: {
    async jwt({ token, user, trigger }) {
      // everytime read or write to the token

      if (user) {
        token.role = user.role;
        token.onboardingStatus = user.onboardingStatus;
      }
      if (trigger === "update") {
        token.onboardingStatus = 5;
      }
      return token; // this token will get passed to session
    },
    async session({ session, token }) {
      // will run this also in jwt
      if (token) {
        session.user.role = token.role as Role;
        session.user.onboardingStatus = token.onboardingStatus as number;
      }
      return session;
    },
  },
});