vinnie/localgreenchain
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
localgreenchain/pages/auth/signin.tsx
Claude 39b6081baa
Implement comprehensive authentication system (Agent 1) 
Add complete user authentication with NextAuth.js supporting:
- Email/password credentials authentication
- OAuth providers (GitHub, Google) with optional configuration
- JWT-based session management with 30-day expiry
- Role-based access control (USER, GROWER, FARM_MANAGER, ADMIN)
- Permission system with granular access control
- Secure password hashing with bcrypt (12 rounds)
- Rate limiting on auth endpoints
- Password reset flow with secure tokens
- Email verification system

Files added:
- lib/auth/: Core auth library (types, permissions, context, hooks, middleware)
- pages/api/auth/: Auth API routes (NextAuth, register, forgot-password, verify-email)
- pages/auth/: Auth pages (signin, signup, forgot-password, reset-password, verify-email)
- components/auth/: Reusable auth components (LoginForm, RegisterForm, AuthGuard, etc.)

Updated _app.tsx to include SessionProvider for auth state management.
2025-11-23 03:52:09 +00:00

225 lines
8.1 KiB
TypeScript
Raw Blame History

import { useState } from 'react'
import { GetServerSideProps } from 'next'
import { getProviders, signIn, getCsrfToken } from 'next-auth/react'
import { getServerSession } from 'next-auth/next'
import Head from 'next/head'
import Link from 'next/link'
import { useRouter } from 'next/router'
import { authOptions } from '../api/auth/[...nextauth]'
import Layout from '@/components/layout'
interface SignInProps {
providers: Awaited<ReturnType<typeof getProviders>>
csrfToken: string | undefined
}
export default function SignIn({ providers, csrfToken }: SignInProps) {
const router = useRouter()
const { callbackUrl, error } = router.query
const [email, setEmail] = useState('')
const [password, setPassword] = useState('')
const [isLoading, setIsLoading] = useState(false)
const [authError, setAuthError] = useState<string | null>(
error ? getErrorMessage(error as string) : null
)
const handleCredentialsSubmit = async (e: React.FormEvent) => {
e.preventDefault()
setIsLoading(true)
setAuthError(null)
try {
const result = await signIn('credentials', {
email,
password,
redirect: false,
})
if (result?.error) {
setAuthError(result.error)
} else if (result?.ok) {
router.push((callbackUrl as string) || '/')
}
} catch (err) {
setAuthError('An unexpected error occurred')
} finally {
setIsLoading(false)
}
}
const handleOAuthSignIn = (providerId: string) => {
signIn(providerId, { callbackUrl: (callbackUrl as string) || '/' })
}
return (
<Layout>
<Head>
<title>Sign In | LocalGreenChain</title>
</Head>
<div className="min-h-screen flex items-center justify-center bg-gray-50 py-12 px-4 sm:px-6 lg:px-8">
<div className="max-w-md w-full space-y-8">
<div>
<h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900">
Sign in to your account
</h2>
<p className="mt-2 text-center text-sm text-gray-600">
Or{' '}
<Link href="/auth/signup">
<a className="font-medium text-green-600 hover:text-green-500">
create a new account
</a>
</Link>
</p>
</div>
{authError && (
<div className="bg-red-50 border border-red-200 text-red-700 px-4 py-3 rounded relative">
<span className="block sm:inline">{authError}</span>
</div>
)}
<form className="mt-8 space-y-6" onSubmit={handleCredentialsSubmit}>
<input type="hidden" name="csrfToken" defaultValue={csrfToken} />
<div className="rounded-md shadow-sm -space-y-px">
<div>
<label htmlFor="email" className="sr-only">
Email address
</label>
<input
id="email"
name="email"
type="email"
autoComplete="email"
required
value={email}
onChange={(e) => setEmail(e.target.value)}
className="appearance-none rounded-none relative block w-full px-3 py-2 border border-gray-300 placeholder-gray-500 text-gray-900 rounded-t-md focus:outline-none focus:ring-green-500 focus:border-green-500 focus:z-10 sm:text-sm"
placeholder="Email address"
/>
</div>
<div>
<label htmlFor="password" className="sr-only">
Password
</label>
<input
id="password"
name="password"
type="password"
autoComplete="current-password"
required
value={password}
onChange={(e) => setPassword(e.target.value)}
className="appearance-none rounded-none relative block w-full px-3 py-2 border border-gray-300 placeholder-gray-500 text-gray-900 rounded-b-md focus:outline-none focus:ring-green-500 focus:border-green-500 focus:z-10 sm:text-sm"
placeholder="Password"
/>
</div>
</div>
<div className="flex items-center justify-between">
<div className="flex items-center">
<input
id="remember-me"
name="remember-me"
type="checkbox"
className="h-4 w-4 text-green-600 focus:ring-green-500 border-gray-300 rounded"
/>
<label htmlFor="remember-me" className="ml-2 block text-sm text-gray-900">
Remember me
</label>
</div>
<div className="text-sm">
<Link href="/auth/forgot-password">
<a className="font-medium text-green-600 hover:text-green-500">
Forgot your password?
</a>
</Link>
</div>
</div>
<div>
<button
type="submit"
disabled={isLoading}
className="group relative w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-md text-white bg-green-600 hover:bg-green-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-green-500 disabled:opacity-50 disabled:cursor-not-allowed"
>
{isLoading ? 'Signing in...' : 'Sign in'}
</button>
</div>
</form>
{providers && Object.values(providers).filter(p => p.id !== 'credentials').length > 0 && (
<>
<div className="mt-6">
<div className="relative">
<div className="absolute inset-0 flex items-center">
<div className="w-full border-t border-gray-300" />
</div>
<div className="relative flex justify-center text-sm">
<span className="px-2 bg-gray-50 text-gray-500">Or continue with</span>
</div>
</div>
<div className="mt-6 grid grid-cols-2 gap-3">
{Object.values(providers)
.filter((provider) => provider.id !== 'credentials')
.map((provider) => (
<button
key={provider.name}
onClick={() => handleOAuthSignIn(provider.id)}
className="w-full inline-flex justify-center py-2 px-4 border border-gray-300 rounded-md shadow-sm bg-white text-sm font-medium text-gray-500 hover:bg-gray-50"
>
<span>{provider.name}</span>
</button>
))}
</div>
</div>
</>
)}
</div>
</div>
</Layout>
)
}
function getErrorMessage(error: string): string {
const errorMessages: Record<string, string> = {
Signin: 'Try signing in with a different account.',
OAuthSignin: 'Try signing in with a different account.',
OAuthCallback: 'Try signing in with a different account.',
OAuthCreateAccount: 'Try signing in with a different account.',
EmailCreateAccount: 'Try signing in with a different account.',
Callback: 'Try signing in with a different account.',
OAuthAccountNotLinked: 'To confirm your identity, sign in with the same account you used originally.',
EmailSignin: 'Check your email address.',
CredentialsSignin: 'Sign in failed. Check the details you provided are correct.',
default: 'Unable to sign in.',
}
return errorMessages[error] ?? errorMessages.default
}
export const getServerSideProps: GetServerSideProps = async (context) => {
const session = await getServerSession(context.req, context.res, authOptions)
if (session) {
return {
redirect: {
destination: '/',
permanent: false,
},
}
}
const providers = await getProviders()
const csrfToken = await getCsrfToken(context)
return {
props: {
providers: providers ?? null,
csrfToken: csrfToken ?? null,
},
}
}
Reference in a new issue View git blame Copy permalink