import { createClient, type GenericCtx } from "@convex-dev/better-auth"; import { convex } from "@convex-dev/better-auth/plugins"; import { betterAuth, type BetterAuthOptions } from "better-auth"; import { captcha, oneTimeToken, openAPI, username } from "better-auth/plugins"; import { v } from "convex/values"; import { z } from "zod"; import { components } from "./_generated/api"; import { DataModel } from "./_generated/dataModel"; import { mutation, query } from "./_generated/server"; import authConfig from "./auth.config"; import authSchema from "./betterAuth/schema"; const siteUrl = process.env.SITE_URL!; // The component client has methods needed for integrating Convex with Better Auth, // as well as helper methods for general use. export const authComponent = createClient( components.betterAuth, { local: { schema: authSchema } } ); const metadataSchema = z.object({ phrasePreference: z.enum(["comforting", "mocking", "both"]), }) const statusSchema = z.object({ status: z.enum(["online", "busy", "offline", "away"]), isUserSet: z.boolean(), }); export const createAuthOptions = (ctx: GenericCtx) => { return { baseURL: siteUrl, database: authComponent.adapter(ctx), emailAndPassword: { enabled: true, requireEmailVerification: false, autoSignIn: true }, user: { additionalFields: { metadata: { type: "json", defaultValue: () => { const metadata = metadataSchema.parse({ phrasePreference: "comforting", }) return metadata.phrasePreference; }, required: false, }, friends: { type: "string[]", defaultValue: [], required: false, index: true }, status: { type: "json", defaultValue: () => { return { status: "offline", isUserSet: false, } }, required: false, index: true, transform: { input: (status) => { return statusSchema.safeParse(status).success ? status : { status: "offline", isUserSet: false, }; }, output: (status) => { return statusSchema.safeParse(status).success ? status : { status: "offline", isUserSet: false, }; } } } }, }, plugins: [ convex({ authConfig, jwksRotateOnTokenGenerationError: true, }), captcha({ provider: "cloudflare-turnstile", secretKey: process.env.CAPTCHA_SECRET_KEY!, }), username({ displayUsernameValidator: (displayUsername) => { // Allow only alphanumeric characters, underscores, and hyphens return /^[a-zA-Z0-9_-]+$/.test(displayUsername) } }), oneTimeToken(), openAPI() ], } satisfies BetterAuthOptions; } export const createAuth = ( ctx: GenericCtx ) => { return betterAuth(createAuthOptions(ctx)); }; // Example function for getting the current user // Feel free to edit, omit, etc. export const getCurrentUser = query({ args: {}, handler: async (ctx) => { return authComponent.getAuthUser(ctx); }, }); export const sendKeysToServer = mutation({ args: { userId: v.string(), identityKey: v.object({ curve25519: v.string(), ed25519: v.string(), }), oneTimeKeys: v.array(v.object({ keyId: v.string(), publicKey: v.string(), })), forceInsert: v.boolean(), }, handler: async (ctx, args) => { return ctx.runMutation(components.betterAuth.olm.index.sendKeysToServer, { userId: args.userId, identityKey: args.identityKey, oneTimeKeys: args.oneTimeKeys, forceInsert: args.forceInsert, }); }, }); export const retrieveServerOlmAccount = query({ args: { userId: v.string(), }, handler: async (ctx, args) => { return ctx.runQuery(components.betterAuth.olm.index.retrieveServerOlmAccount, { userId: args.userId, }); }, }); export const updateUserStatus = mutation({ args: { status: v.string(), isUserSet: v.boolean(), }, handler: async (ctx, args) => { return ctx.runMutation(components.betterAuth.user.index.updateUserStatus, { status: args.status, isUserSet: args.isUserSet, }); }, });