Merge pull request #18 from will-lp1/improve-auth

will-lp1 · web-flow · commit e12d5bfe30ed · 2025-05-01T11:24:57.000+01:00
Improve auth
diff --git a/apps/snow-leopard/app/(auth)/login/page.tsx b/apps/snow-leopard/app/(auth)/login/page.tsx
@@ -8,9 +8,14 @@ import { toast } from '@/components/toast';
 import { AuthForm } from '@/components/auth-form';
 import { SubmitButton } from '@/components/submit-button';
 
+// Client-side check for enabled providers
+const googleEnabled = process.env.NEXT_PUBLIC_GOOGLE_ENABLED === 'true';
+const githubEnabled = process.env.NEXT_PUBLIC_GITHUB_ENABLED === 'true';
+
 export default function LoginPage() {
   const router = useRouter();
-  const [isLoading, setIsLoading] = useState(false);
+  const [isEmailLoading, setIsEmailLoading] = useState(false);
+  const [isSocialLoading, setIsSocialLoading] = useState<string | null>(null);
   const [isSuccessful, setIsSuccessful] = useState(false);
   const [email, setEmail] = useState('');
 
@@ -25,11 +30,12 @@ export default function LoginPage() {
       callbackURL: "/documents"
     }, {
       onRequest: () => {
-        setIsLoading(true);
+        setIsEmailLoading(true);
         setIsSuccessful(false);
+        setIsSocialLoading(null);
       },
       onSuccess: (ctx) => {
-        setIsLoading(false);
+        setIsEmailLoading(false);
         setIsSuccessful(true);
         toast({
           type: 'success',
@@ -38,7 +44,7 @@ export default function LoginPage() {
         router.refresh();
       },
       onError: (ctx) => {
-        setIsLoading(false);
+        setIsEmailLoading(false);
         setIsSuccessful(false);
         console.error("Email Login Error:", ctx.error);
         toast({
@@ -49,6 +55,29 @@ export default function LoginPage() {
     });
   };
 
+  const handleSocialLogin = async (provider: 'google' | 'github') => {
+    await authClient.signIn.social({
+      provider,
+      callbackURL: "/documents",
+      errorCallbackURL: "/login?error=social_signin_failed",
+    }, {
+      onRequest: () => {
+        setIsSocialLoading(provider);
+        setIsSuccessful(false);
+        setIsEmailLoading(false);
+      },
+      onError: (ctx) => {
+        setIsSocialLoading(null);
+        setIsSuccessful(false);
+        console.error(`Social Login Error (${provider}):`, ctx.error);
+        toast({
+          type: 'error',
+          description: ctx.error.message || `Failed to sign in with ${provider}.`,
+        });
+      },
+    });
+  };
+
   return (
     <div className="flex h-dvh w-screen items-start pt-12 md:pt-0 md:items-center justify-center bg-background">
       <div className="w-full max-w-md overflow-hidden rounded-2xl flex flex-col gap-12">
@@ -60,7 +89,16 @@ export default function LoginPage() {
         </div>
         
         <div className="px-8">
-          <AuthForm action={handleEmailLogin} defaultEmail={email}> 
+          <AuthForm 
+            action={handleEmailLogin} 
+            defaultEmail={email}
+            showSocialLogins={true}
+            googleEnabled={googleEnabled}
+            githubEnabled={githubEnabled}
+            onSocialLogin={handleSocialLogin}
+            isSocialLoading={isSocialLoading}
+            isEmailLoading={isEmailLoading}
+          > 
             <SubmitButton 
               isSuccessful={isSuccessful}
             >
diff --git a/apps/snow-leopard/app/(auth)/register/page.tsx b/apps/snow-leopard/app/(auth)/register/page.tsx
@@ -5,12 +5,17 @@ import { useRouter } from 'next/navigation';
 import { useState } from 'react';
 import { authClient } from '@/lib/auth-client';
 import { toast } from '@/components/toast';
-import { AuthForm } from '@/components/auth-form'; 
+import { AuthForm } from '@/components/auth-form';
 import { SubmitButton } from '@/components/submit-button';
 
+const googleEnabled = process.env.NEXT_PUBLIC_GOOGLE_ENABLED === 'true';
+const githubEnabled = process.env.NEXT_PUBLIC_GITHUB_ENABLED === 'true';
+const emailVerificationEnabled = process.env.NEXT_PUBLIC_EMAIL_VERIFY_ENABLED === 'true';
+
 export default function RegisterPage() {
   const router = useRouter();
-  const [isLoading, setIsLoading] = useState(false);
+  const [isEmailLoading, setIsEmailLoading] = useState(false);
+  const [isSocialLoading, setIsSocialLoading] = useState<string | null>(null);
   const [isSuccessful, setIsSuccessful] = useState(false);
   const [email, setEmail] = useState('');
 
@@ -19,8 +24,9 @@ export default function RegisterPage() {
     const password = formData.get('password') as string;
     const name = emailValue.split('@')[0] || 'User';
     setEmail(emailValue);
-    setIsLoading(true);
+    setIsEmailLoading(true);
     setIsSuccessful(false);
+    setIsSocialLoading(null);
 
     await authClient.signUp.email({
       email: emailValue,
@@ -30,11 +36,8 @@ export default function RegisterPage() {
       onRequest: () => {
       },
       onSuccess: (ctx) => {
-        setIsLoading(false);
-
-        const isVerificationEnabled = process.env.NEXT_PUBLIC_EMAIL_VERIFY_ENABLED === 'true';
-
-        if (isVerificationEnabled) {
+        setIsEmailLoading(false);
+        if (emailVerificationEnabled) {
           setIsSuccessful(false);
           toast({
             type: 'success',
@@ -47,11 +50,11 @@ export default function RegisterPage() {
             type: 'success',
             description: 'Account created! Redirecting...'
           });
-          router.push('/documents');
+          router.push('/documents'); 
         }
       },
       onError: (ctx) => {
-        setIsLoading(false);
+        setIsEmailLoading(false);
         setIsSuccessful(false);
         console.error("Email Signup Error:", ctx.error);
         toast({
@@ -62,6 +65,29 @@ export default function RegisterPage() {
     });
   };
 
+  const handleSocialLogin = async (provider: 'google' | 'github') => {
+    await authClient.signIn.social({
+      provider,
+      callbackURL: "/documents", 
+      errorCallbackURL: "/register?error=social_signin_failed",
+    }, {
+      onRequest: () => {
+        setIsSocialLoading(provider);
+        setIsSuccessful(false);
+        setIsEmailLoading(false);
+      },
+      onError: (ctx) => {
+        setIsSocialLoading(null);
+        setIsSuccessful(false);
+        console.error(`Social Sign Up/In Error (${provider}):`, ctx.error);
+        toast({
+          type: 'error',
+          description: ctx.error.message || `Failed to sign up/in with ${provider}.`,
+        });
+      },
+    });
+  };
+
   return (
     <div className="flex h-dvh w-screen items-start pt-12 md:pt-0 md:items-center justify-center bg-background">
       <div className="w-full max-w-md overflow-hidden rounded-2xl flex flex-col gap-12">
@@ -72,9 +98,18 @@ export default function RegisterPage() {
           </p>
         </div>
 
-        <div className="px-8">
-          <AuthForm action={handleEmailSignup} defaultEmail={email}>
-            <SubmitButton 
+        <div className="px-8 flex flex-col gap-6">
+          <AuthForm 
+            action={handleEmailSignup} 
+            defaultEmail={email}
+            showSocialLogins={true}
+            googleEnabled={googleEnabled}
+            githubEnabled={githubEnabled}
+            onSocialLogin={handleSocialLogin}
+            isSocialLoading={isSocialLoading}
+            isEmailLoading={isEmailLoading}
+          >
+            <SubmitButton
               isSuccessful={isSuccessful}
             >
               Sign Up
diff --git a/apps/snow-leopard/components/auth-form.tsx b/apps/snow-leopard/components/auth-form.tsx
@@ -2,19 +2,36 @@
 
 import { Input } from '@/components/ui/input';
 import { Label } from '@/components/ui/label';
+import { Button } from '@/components/ui/button';
+import { LogoGoogle, GitIcon, LoaderIcon } from '@/components/icons';
 import type { ReactNode } from 'react';
 
 interface AuthFormProps {
   action: (formData: FormData) => void;
   defaultEmail?: string;
   children: ReactNode;
+  showSocialLogins?: boolean;
+  googleEnabled?: boolean;
+  githubEnabled?: boolean;
+  onSocialLogin?: (provider: 'google' | 'github') => void;
+  isSocialLoading?: string | null;
+  isEmailLoading?: boolean;
 }
 
 export function AuthForm({
   action,
   defaultEmail = '',
   children,
+  showSocialLogins = false,
+  googleEnabled = false,
+  githubEnabled = false,
+  onSocialLogin = () => {},
+  isSocialLoading = null,
+  isEmailLoading = false,
 }: AuthFormProps) {
+  const anySocialEnabled = googleEnabled || githubEnabled;
+  const isLoading = !!isSocialLoading || isEmailLoading;
+
   return (
     <form action={action} className="flex flex-col gap-6 px-4 sm:px-16">
       <div className="flex flex-col gap-2">
@@ -39,6 +56,46 @@ export function AuthForm({
         />
       </div>
       {children}
+
+      {showSocialLogins && anySocialEnabled && (
+        <>
+          <div className="relative">
+            <div className="absolute inset-0 flex items-center">
+              <span className="w-full border-t" />
+            </div>
+            <div className="relative flex justify-center text-xs uppercase">
+              <span className="bg-background px-2 text-muted-foreground">
+                Or continue with
+              </span>
+            </div>
+          </div>
+
+          <div className="flex flex-col sm:flex-row gap-2">
+            {googleEnabled && (
+              <Button
+                type="button"
+                variant="outline"
+                className="w-full"
+                onClick={() => onSocialLogin('google')}
+                disabled={isLoading}
+              >
+                {isSocialLoading === 'google' ? (<span className="mr-2 h-4 w-4"><LoaderIcon size={16} /></span>) : (<span className="mr-2 h-4 w-4"><LogoGoogle size={16} /></span>)} Google
+              </Button>
+            )}
+            {githubEnabled && (
+              <Button
+                type="button"
+                variant="outline"
+                className="w-full"
+                onClick={() => onSocialLogin('github')}
+                disabled={isLoading}
+              >
+                {isSocialLoading === 'github' ? (<span className="mr-2 h-4 w-4"><LoaderIcon size={16} /></span>) : (<span className="mr-2 h-4 w-4"><GitIcon /></span>)} GitHub
+              </Button>
+            )}
+          </div>
+        </>
+      )}
     </form>
   );
 }
diff --git a/apps/snow-leopard/components/submit-button.tsx b/apps/snow-leopard/components/submit-button.tsx
@@ -22,10 +22,7 @@ export function SubmitButton({ isSuccessful, children }: SubmitButtonProps) {
           Done
         </>
       ) : (
-        <>
-          <LoaderIcon size={16} />
-          {children}
-        </>
+        children
       )}
     </Button>
   );
diff --git a/apps/snow-leopard/lib/auth.ts b/apps/snow-leopard/lib/auth.ts
@@ -1,42 +1,38 @@
 import 'server-only';
 import { betterAuth } from 'better-auth';
-// Use the adapter import path potentially provided by the core library or a plugin
 import { drizzleAdapter } from "better-auth/adapters/drizzle";
 import { nextCookies } from 'better-auth/next-js';
-import { db, user as schemaUser } from '@snow-leopard/db'; // Use the actual package name
-import * as schema from '@snow-leopard/db'; // Import all exports if needed, or specific tables
-import Stripe from "stripe"; // Import Stripe SDK
-import { stripe } from "@better-auth/stripe"; // Import Better Auth Stripe plugin
-import { Resend } from 'resend'; // Import Resend SDK
-// import { count } from 'drizzle-orm'; // No longer needed for test query
-
-// Check for required environment variables
+import { db, user as schemaUser } from '@snow-leopard/db'; 
+import * as schema from '@snow-leopard/db'; 
+import Stripe from "stripe"; 
+import { stripe } from "@better-auth/stripe"; 
+import { Resend } from 'resend'; 
+
+const googleEnabled = process.env.GOOGLE_ENABLED === 'true';
+const githubEnabled = process.env.GITHUB_ENABLED === 'true';
+
 if (!process.env.BETTER_AUTH_SECRET) {
   throw new Error('Missing BETTER_AUTH_SECRET environment variable');
 }
 if (!process.env.BETTER_AUTH_URL) {
     throw new Error('Missing BETTER_AUTH_URL environment variable');
 }
 
-// Only check Stripe keys if Stripe is explicitly enabled
 if (process.env.STRIPE_ENABLED === 'true') {
   if (!process.env.STRIPE_SECRET_KEY) throw new Error('Missing STRIPE_SECRET_KEY but STRIPE_ENABLED is true');
   if (!process.env.STRIPE_WEBHOOK_SECRET) throw new Error('Missing STRIPE_WEBHOOK_SECRET but STRIPE_ENABLED is true');
   if (!process.env.STRIPE_PRO_MONTHLY_PRICE_ID) throw new Error('Missing STRIPE_PRO_MONTHLY_PRICE_ID but STRIPE_ENABLED is true'); // Example Price ID env var
   if (!process.env.STRIPE_PRO_YEARLY_PRICE_ID) throw new Error('Missing STRIPE_PRO_YEARLY_PRICE_ID but STRIPE_ENABLED is true'); // Add check for yearly price ID
 }
 
-// ---> Add check for email verification enabled <---
 const emailVerificationEnabled = process.env.EMAIL_VERIFY_ENABLED === 'true';
 console.log(`Email Verification Enabled: ${emailVerificationEnabled}`);
 
-// Check Resend/Email From keys ONLY if verification is enabled
 if (emailVerificationEnabled) {
   if (!process.env.RESEND_API_KEY) throw new Error('Missing RESEND_API_KEY because EMAIL_VERIFY_ENABLED is true');
   if (!process.env.EMAIL_FROM) throw new Error('Missing EMAIL_FROM because EMAIL_VERIFY_ENABLED is true');
 }
 
-// Environment Variable Checks (Ensure all required vars are present)
 if (process.env.STRIPE_ENABLED === 'true') {
   if (!process.env.STRIPE_SECRET_KEY) {
     throw new Error("STRIPE_SECRET_KEY environment variable is missing but STRIPE_ENABLED is true.");
@@ -52,6 +48,17 @@ if (process.env.STRIPE_ENABLED === 'true') {
   }
 }
 
+if (googleEnabled) {
+  if (!process.env.GOOGLE_CLIENT_ID) throw new Error('Missing GOOGLE_CLIENT_ID because GOOGLE_ENABLED is true');
+  if (!process.env.GOOGLE_CLIENT_SECRET) throw new Error('Missing GOOGLE_CLIENT_SECRET because GOOGLE_ENABLED is true');
+  console.log('Google OAuth ENABLED');
+}
+
+if (githubEnabled) {
+  if (!process.env.GITHUB_CLIENT_ID) throw new Error('Missing GITHUB_CLIENT_ID because GITHUB_ENABLED is true');
+  if (!process.env.GITHUB_CLIENT_SECRET) throw new Error('Missing GITHUB_CLIENT_SECRET because GITHUB_ENABLED is true');
+  console.log('GitHub OAuth ENABLED');
+}
 
 console.log('--- Checking env vars in lib/auth.ts ---');
 console.log('DATABASE_URL:', process.env.DATABASE_URL ? 'Set' : 'MISSING!');
@@ -115,14 +122,31 @@ if (process.env.STRIPE_ENABLED === 'true') {
   console.log('Stripe is DISABLED. Skipping Stripe plugin for Better Auth.');
 }
 
-// Ensure the nextCookies plugin is always last in the chain
 authPlugins.push(nextCookies());
 
+const socialProviders: Record<string, any> = {}; 
+
+if (googleEnabled) {
+  socialProviders.google = {
+    clientId: process.env.GOOGLE_CLIENT_ID!,
+    clientSecret: process.env.GOOGLE_CLIENT_SECRET!,
+  };
+}
+
+if (githubEnabled) {
+  socialProviders.github = {
+    clientId: process.env.GITHUB_CLIENT_ID!,
+    clientSecret: process.env.GITHUB_CLIENT_SECRET!,
+  };
+}
+
 export const auth = betterAuth({
   database: drizzleAdapter(db, { 
     provider: 'pg',
-  }), 
-  
+  }),
+
+  socialProviders,
+
   emailAndPassword: {    
       enabled: true,
       requireEmailVerification: emailVerificationEnabled, 
