feat: SSO plugin with OIDC and SAML support (#3185)

* fix(email-verification): improve email verification logic to check session and user email consistency (#3042) * docs(passkey): Fixed signIn passkey props (#3014) callbackURL doesn't exist. * fix(email-otp): auto-verify on email otp reset (#3022) * fix: delete user should respect freshAge config (#3075) * fix: delete user needs to enforced through fresh age * cleanup * cleanup * chore(org): add comments explaining what shimContext does (#3098) * feat: Allow passing `id` in DB hook `create` (#3048) * feat(database-hooks): Allow passing `id` in DB hook `create` It's the same to using a custom `idGenerator`, except configurable by the database hook which would in theory provide more data. A use-case is to generate the id based on user info in the user before DB hook. Solves https://discord.com/channels/1288403910284935179/1379190465588367540/1384217435535835216 * chore: lint * fix: tests failing * docs: basic errs with svg props (#3102) * docs: corrected github user email scope name (#3099) * docs: corrected github user email scope name * docs: cubic dev suggestion * fix: use correct refresh token endpoint for github (#3095) * chore: fix typo in authorize comment (#3106) * docs: fix session parameter spelling (#3108) * docs: input field usage on additional fields (#2991) * fix: onLinkAccount trigger on phone number verification (#3007) * fix: expose headers override in jwt plugin (#3019) * expose headers override in jwt plugin * clean up * lint * fix(expo): remove duplicated trusted origins * feat: link account with idToken (#1830) * add idToken to link account * add docs * Implemented linking accounts based on idToken * fix: tests * docs: prevent diff * docs: prevent diff --------- Co-authored-by: kzlar <120426485+kzlar@users.noreply.github.com> * feat: add Hugging Face provider (#3089) * feat: add huggingface provider * Add hugging face to doc * chore: update hugging face logo * chore: release v1.2.10 * docs: fix builder failing to open * docs(NextJS): Improve middleware example to be more secure (#3135) * docs(NextJS): Improve middleware example to be more secure Users can skim code without reading the text, and LLMs can read code and miss-understand context correctly. Our current middleware example only checks for existence of a cookie, and doesn't validate it. While we do warn users this isn't secure, some users has raised concern in a Github issue saying it's not obvious enough for users who skim. Also we don't provide examples on how to authenticate users on each route, we only show middleware optimistic check examples. * Update docs/content/docs/integrations/next.mdx Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com> --------- Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com> * fix(username): log the correct username (#3127) * docs: fix typo in plugin (#3122) * typo * typo * typo * typo * typo * docs: fix typos on mcp guide (#3146) * docs: update TanStack Start integration guide (#3142) * fix(sveltekit): only dynamic import $app/environment once (#3152) Co-authored-by: Work <work@Jasons-MacBook-Pro.local> * docs: fix typo in oauth proxy documentation (#3151) * blog: seed round announcement (#3168) * init * cleanup * fix seed round announcemnt * fix seed round announcemnt * seed round blog * add nav mobile * fix typo * Update docs/content/blogs/seed-round.mdx Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com> * Update docs/app/blog/[[...slug]]/page.tsx Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com> * Update docs/app/blog/[[...slug]]/page.tsx Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com> * update og * cleanup --------- Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com> * docs: fix email address * refactor(mongo-adapter): migrate to createAdapter (#3170) In the past we didn't have mongoDb adapter move over to createAdapter since we've seen users running into issues. However some time ago I've merged a PR which I believe fixed the issue, and after testing the org plugin with the mongo adapter that uses `createAdapter` I don't see any issues. * fix(api-key): update should only use by ID * docs: fix blog page layout (#3176) * fix/blog-page-layouts * clean up * docs: update contact email in seed round blog * init * cleanup * feat(better-auth): add test utilities and update dependencies - Introduced a new test utility module in `src/test-utils/index.ts` for better testing support. - Updated `package.json` to include new test utilities in the build configuration. - Added `oauth2-mock-server` dependency to `pnpm-lock.yaml` and `sso/package.json` for OAuth2 testing. - Enhanced the SSO provider registration process with improved error handling. * docs update --------- Co-authored-by: Maxwell <145994855+ping-maxwell@users.noreply.github.com> Co-authored-by: KinfeMichael Tariku <65047246+Kinfe123@users.noreply.github.com> Co-authored-by: Undefined Ninja <74867549+0xCodeMaieutics@users.noreply.github.com> Co-authored-by: artemoire <18062266+artemoire@users.noreply.github.com> Co-authored-by: reslear <12596485+reslear@users.noreply.github.com> Co-authored-by: kzlar <120426485+kzlar@users.noreply.github.com> Co-authored-by: Eliott C. <coyotte508@protonmail.com> Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com> Co-authored-by: Alessandro Bortolin <bortolin.alessandro@outlook.it> Co-authored-by: Lakshya Thakur <lapstjup@gmail.com> Co-authored-by: Usman S. (Max Programming) <51731966+max-programming@users.noreply.github.com> Co-authored-by: Jason Venable <jason.venable@gmail.com> Co-authored-by: Work <work@Jasons-MacBook-Pro.local> Co-authored-by: Dan McGrath <daniel.mcgrath9@gmail.com>
2025-12-09 20:27:44 +00:00 · 2025-06-27 20:19:19 -07:00
parent 4e38645b44
commit a6a66d9c7e
60 changed files with 4982 additions and 662 deletions
--- a/docs/components/sidebar-content.tsx
+++ b/docs/components/sidebar-content.tsx
@@ -516,6 +516,23 @@ export const contents: Content[] = [
 					</svg>
 				),
 			},
+			{
+				title: "Hugging Face",
+				href: "/docs/authentication/huggingface",
+				icon: () => (
+					<svg
+						xmlns="http://www.w3.org/2000/svg"
+						width="1.2em"
+						height="1.2em"
+						viewBox="0 0 24 24"
+					>
+						<path
+							fill="currentColor"
+							d="M12.025 1.13c-5.77 0-10.449 4.647-10.449 10.378c0 1.112.178 2.181.503 3.185c.064-.222.203-.444.416-.577a.96.96 0 0 1 .524-.15c.293 0 .584.124.84.284c.278.173.48.408.71.694c.226.282.458.611.684.951v-.014c.017-.324.106-.622.264-.874s.403-.487.762-.543c.3-.047.596.06.787.203s.31.313.4.467c.15.257.212.468.233.542c.01.026.653 1.552 1.657 2.54c.616.605 1.01 1.223 1.082 1.912c.055.537-.096 1.059-.38 1.572c.637.121 1.294.187 1.967.187c.657 0 1.298-.063 1.921-.178c-.287-.517-.44-1.041-.384-1.581c.07-.69.465-1.307 1.081-1.913c1.004-.987 1.647-2.513 1.657-2.539c.021-.074.083-.285.233-.542c.09-.154.208-.323.4-.467a1.08 1.08 0 0 1 .787-.203c.359.056.604.29.762.543s.247.55.265.874v.015c.225-.34.457-.67.683-.952c.23-.286.432-.52.71-.694c.257-.16.547-.284.84-.285a.97.97 0 0 1 .524.151c.228.143.373.388.43.625l.006.04a10.3 10.3 0 0 0 .534-3.273c0-5.731-4.678-10.378-10.449-10.378M8.327 6.583a1.5 1.5 0 0 1 .713.174a1.487 1.487 0 0 1 .617 2.013c-.183.343-.762-.214-1.102-.094c-.38.134-.532.914-.917.71a1.487 1.487 0 0 1 .69-2.803m7.486 0a1.487 1.487 0 0 1 .689 2.803c-.385.204-.536-.576-.916-.71c-.34-.12-.92.437-1.103.094a1.487 1.487 0 0 1 .617-2.013a1.5 1.5 0 0 1 .713-.174m-10.68 1.55a.96.96 0 1 1 0 1.921a.96.96 0 0 1 0-1.92m13.838 0a.96.96 0 1 1 0 1.92a.96.96 0 0 1 0-1.92M8.489 11.458c.588.01 1.965 1.157 3.572 1.164c1.607-.007 2.984-1.155 3.572-1.164c.196-.003.305.12.305.454c0 .886-.424 2.328-1.563 3.202c-.22-.756-1.396-1.366-1.63-1.32q-.011.001-.02.006l-.044.026l-.01.008l-.03.024q-.018.017-.035.036l-.032.04a1 1 0 0 0-.058.09l-.014.025q-.049.088-.11.19a1 1 0 0 1-.083.116a1.2 1.2 0 0 1-.173.18q-.035.029-.075.058a1.3 1.3 0 0 1-.251-.243a1 1 0 0 1-.076-.107c-.124-.193-.177-.363-.337-.444c-.034-.016-.104-.008-.2.022q-.094.03-.216.087q-.06.028-.125.063l-.13.074q-.067.04-.136.086a3 3 0 0 0-.135.096a3 3 0 0 0-.26.219a2 2 0 0 0-.12.121a2 2 0 0 0-.106.128l-.002.002a2 2 0 0 0-.09.132l-.001.001a1.2 1.2 0 0 0-.105.212q-.013.036-.024.073c-1.139-.875-1.563-2.317-1.563-3.203c0-.334.109-.457.305-.454m.836 10.354c.824-1.19.766-2.082-.365-3.194c-1.13-1.112-1.789-2.738-1.789-2.738s-.246-.945-.806-.858s-.97 1.499.202 2.362c1.173.864-.233 1.45-.685.64c-.45-.812-1.683-2.896-2.322-3.295s-1.089-.175-.938.647s2.822 2.813 2.562 3.244s-1.176-.506-1.176-.506s-2.866-2.567-3.49-1.898s.473 1.23 2.037 2.16c1.564.932 1.686 1.178 1.464 1.53s-3.675-2.511-4-1.297c-.323 1.214 3.524 1.567 3.287 2.405c-.238.839-2.71-1.587-3.216-.642c-.506.946 3.49 2.056 3.522 2.064c1.29.33 4.568 1.028 5.713-.624m5.349 0c-.824-1.19-.766-2.082.365-3.194c1.13-1.112 1.789-2.738 1.789-2.738s.246-.945.806-.858s.97 1.499-.202 2.362c-1.173.864.233 1.45.685.64c.451-.812 1.683-2.896 2.322-3.295s1.089-.175.938.647s-2.822 2.813-2.562 3.244s1.176-.506 1.176-.506s2.866-2.567 3.49-1.898s-.473 1.23-2.037 2.16c-1.564.932-1.686 1.178-1.464 1.53s3.675-2.511 4-1.297c.323 1.214-3.524 1.567-3.287 2.405c.238.839 2.71-1.587 3.216-.642c.506.946-3.49 2.056-3.522 2.064c-1.29.33-4.568 1.028-5.713-.624"
+						/>
+					</svg>
+				),
+			},
 			{
 				title: "Kick",
 				href: "/docs/authentication/kick",
@@ -1283,20 +1300,20 @@ C0.7,239.6,62.1,0.5,62.2,0.4c0,0,54,13.8,119.9,30.8S302.1,62,302.2,62c0.2,0,0.2,
 						<path
 							d="M6 80.9117L73.8822 13.0294C83.255 3.65685 98.451 3.65685 107.823 13.0294C117.196 22.4019 117.196 37.598 107.823 46.9706L56.5581 98.2359"
 							stroke="currentColor"
-							stroke-width="12"
-							stroke-linecap="round"
+							strokeWidth="12"
+							strokeLinecap="round"
 						/>
 						<path
 							d="M57.2652 97.5289L107.823 46.9706C117.196 37.598 132.392 37.598 141.765 46.9706L142.118 47.324C151.491 56.6966 151.491 71.8926 142.118 81.2651L80.7248 142.659C77.6006 145.783 77.6006 150.848 80.7248 153.972L93.331 166.579"
 							stroke="currentColor"
-							stroke-width="12"
-							stroke-linecap="round"
+							strokeWidth="12"
+							strokeLinecap="round"
 						/>
 						<path
 							d="M90.853 29.9999L40.6482 80.2045C31.2756 89.5768 31.2756 104.773 40.6482 114.146C50.0208 123.518 65.2167 123.518 74.5893 114.146L124.794 63.941"
 							stroke="currentColor"
-							stroke-width="12"
-							stroke-linecap="round"
+							strokeWidth="12"
+							strokeLinecap="round"
 						/>
 					</svg>
 				),
@@ -1571,8 +1588,8 @@ C0.7,239.6,62.1,0.5,62.2,0.4c0,0,54,13.8,119.9,30.8S302.1,62,302.2,62c0.2,0,0.2,
 						xmlns="http://www.w3.org/2000/svg"
 					>
 						<path
-							fill-rule="evenodd"
-							clip-rule="evenodd"
+							fillRule="evenodd"
+							clipRule="evenodd"
 							d="M32.5 64C50.1731 64 64.5 49.6731 64.5 32C64.5 20.1555 58.0648 9.81393 48.5 4.28099V31.9999V47.9998H40.5V45.8594C38.1466 47.2207 35.4143 47.9999 32.5 47.9999C23.6634 47.9999 16.5 40.8364 16.5 31.9999C16.5 23.1633 23.6634 15.9999 32.5 15.9999C35.4143 15.9999 38.1466 16.779 40.5 18.1404V1.00812C37.943 0.350018 35.2624 0 32.5 0C14.8269 0 0.500038 14.3269 0.500038 32C0.500038 49.6731 14.8269 64 32.5 64Z"
 							fill="currentColor"
 						/>