LukeParke/better-auth
1
0
Fork 0
mirror of https://github.com/LukeHagar/better-auth.git synced 2025-12-11 04:19:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,772 Commits 2 Branches 0 Tags
adee10d5229c6cb156095de416820aa5082ae4aa
Commit Graph

3772 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
reslear
8ac324f64d docs(api-key): add example on how to get user session on the server (#3333) 
how to get user session on server example
 2025-07-10 23:56:35 -07:00
Alec Larson
6e4c2fe563 chore(docs): fix callbackURL description of signInUsername endpoint (#3339) 2025-07-10 17:54:58 -07:00
Alexander Lyon
9c3a1388b2 fix: don't require email for account linking (#3335) 
We throw errors on both code paths despite it not being used when linking. Move the error to after the link case so that we only bail on missing info if that missing info is actually needed.
 2025-07-10 14:03:54 -07:00
Maxwell
79f5f73291 feat(api-key): requireName to enforce name on keys (#3129) 
* feat(api-key): `requireName` to force require name on keys

* chore: lint
 2025-07-10 11:17:00 -07:00
KinfeMichael Tariku
a2029ef7fd fix: linking accounts for anon users with one tap and passkey (#3124) 
* typo

* typo

* linking accounts

* clean up

* clean up

* clean up

* clean up
 2025-07-10 11:15:37 -07:00
Bereket Engida
c4c9530602 chore: release v1.3.0-beta.8 2025-07-10 11:12:07 -07:00
Ephraim Duncan
843482fe4a feat: add slack social provider (#3315) 
* feat: add slack provider

* feat: add slack provider docs

* chore:lint

* chore:lint

* docs: add is new flag

---------

Co-authored-by: Bereket Engida <Bekacru@gmail.com>
Co-authored-by: Bereket Engida <86073083+Bekacru@users.noreply.github.com>
 2025-07-10 11:11:34 -07:00
Bereket Engida
ed8fbb890f Merge remote-tracking branch 'origin/main' into v1.3 2025-07-10 10:12:11 -07:00
Dagmawi Babi
b03230688a chore: improved contribution guide (#3332) 2025-07-10 09:32:25 -07:00
Ayush
816003b655 docs: add autumn billing plugin (#3331) 
* docs: add Autumn Billing plugin

* use stepper for setup and cleanups

* add autumn's discord

* chore:lint

---------

Co-authored-by: Bereket Engida <Bekacru@gmail.com>
 2025-07-10 09:19:27 -07:00
Alec Larson
1c6a1dcf9f feat: add rememberMe option to signUpEmail (#3325) 2025-07-09 22:07:15 -07:00
Alec Larson
63921f6eec fix(username): add callbackURL option to signInUsername (#3324) 2025-07-09 22:04:39 -07:00
Bereket Engida
b766b22865 chore: lint 2025-07-09 08:13:33 -07:00
Vagarth
bda8aabf33 fix: update Discord link to use the correct invite URL in blogs section 2025-07-09 22:37:15 +10:00
reslear
ab25180ec2 fix: correct way detect facebook limited token jwt (#2877) 2025-07-09 02:25:10 -07:00
Bereket Engida
2dcb07c6fa chore: release v1.3.0-beta.7 2025-07-09 01:13:44 -07:00
Bereket Engida
cbcba2b5d2 chore: upgrade better-call 2025-07-09 01:13:40 -07:00
Bereket Engida
378eb1d66d feat: add inferAuth to infer plugin types and more on the client without needing client plugins (#3313) 
* apply inference

* cleanup

* cleanup
 2025-07-09 01:12:32 -07:00
kmate19
991e200ff0 feat: add sendOnSignIn option to make sending verification link in sign in route explicit (#2422) 
* feat(signin): make verification sending in sign in route explicit

* lint

* add option in docs

---------

Co-authored-by: Kinfe123 <kinfishtech@gmail.com>
 2025-07-08 20:57:36 -07:00
Undefined Ninja
9bf74021c9 fix(oauth): extended oauth2 tokens with refresh_token_expires_in field (#3167) 
* docs: corrected github user email scope name

* docs: cubic dev suggestion

* feat(oauht2/utils): added `refresh_token_expires_in` field in `getOAuth2Tokens`
 2025-07-08 20:49:35 -07:00
Dagmawi Babi
c5d43bad6c chore: update contribution guide for windows (#3306) 2025-07-08 09:22:49 -07:00
Maxwell
8e7eef04ae fix(oauth): Google prompt doesn't allow + (#3303) 
* fix(oauth): Google prompt doesn't allow `+`

In order to get `consent` and `select_account`, we need to pass it like "select_account consent". However BA's type definitions only allow for "select_account+consent" - likely because it's the standard?

Anyway this PR will take that `select_account+consent` defined by the user and convert it to the spaced version (`select_account consent`)

* chore: lint

* chore: cleanup
 2025-07-08 08:33:21 -07:00
Maxwell
e1579dc5d1 docs: add info about refresh tokens for Google & Github (#3305) 2025-07-08 08:32:45 -07:00
Bereket Engida
72a6275f0b chore: release v1.3.0-beta.6 2025-07-07 23:23:32 -07:00
Bereket Engida
2007ebbc90 chore: fix types 2025-07-07 19:00:15 -07:00
Ephraim Duncan
0bff4af96b feat: notion provider (#3068) 
* feat: add notion provider

* chore: lint

* chore: add docs for notion provider

---------

Co-authored-by: Bereket Engida <86073083+Bekacru@users.noreply.github.com>
 2025-07-07 18:53:52 -07:00
KinfeMichael Tariku
3439fe954f feat(api-key): async support for verify key (#3204) 
Co-authored-by: Bereket Engida <86073083+Bekacru@users.noreply.github.com>
Co-authored-by: Bereket Engida <Bekacru@gmail.com>
 2025-07-07 18:21:48 -07:00
Abdulrahman
cce6c2d74f docs(feat): added apple sign in JWT generation in docs (#2453) 
* docs: Add guide for Sign In with Apple

* docs-feat: add apple JWT generator

* fix-lint: ran lint:fix to fix CI test

* chore: refactor to remove jose

* update docs

* chore: lock file

* fix test

---------

Co-authored-by: Bereket Engida <Bekacru@gmail.com>
 2025-07-07 17:21:10 -07:00
Bereket Engida
daa6531301 Merge branch 'main' into v1.3 2025-07-07 13:44:20 -07:00
KinfeMichael Tariku
c483fa14db fix(two-factor): otp separator mismatch (#2989) 
* fix: otp value and tries separator

* Update packages/better-auth/src/plugins/two-factor/otp/index.ts

Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com>

* lint

---------

Co-authored-by: Bereket Engida <86073083+Bekacru@users.noreply.github.com>
Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com>
 2025-07-07 13:10:13 -07:00
Bereket Engida
e9a9e81868 ear:werge branch 'main' into v1.3 2025-07-07 13:05:45 -07:00
KinfeMichael Tariku
5e36e37d73 chore: export options on the plugin (#2681) 
* docs: typo in admin plugin

* fix: export options

* fix

* import

* import

* lint

* import

* lint

* fix: cast options to any

---------

Co-authored-by: Bereket Engida <Bekacru@gmail.com>
 2025-07-07 13:03:04 -07:00
KinfeMichael Tariku
ba5f13c58a fix(expo): expo plugin should import types from the types path (#2526) 
* fix: plugin import type

* lint

* expo type compat

* expo type compat

* type import

* plugin import

* type compat
 2025-07-07 12:54:26 -07:00
matt
6ef5104b13 fix(two-factor): getting totp uri shouldn't require twoFactor enabled (#2620) 2025-07-07 12:53:17 -07:00
Kyle
0989ebb13f fix: exclude current user from username update checks (#2612) 
* fix: exclude current user from username update checks

* fix lint

* explicitly check for the session

* fix test
 2025-07-07 12:33:39 -07:00
Bereket Engida
e3a450e70e feat(email-otp): support email verification override (#3292) 
* feat(email-otp): allow overriding the default email verifier with email otp

* update docs

* cleanup
 2025-07-07 10:41:28 -07:00
Maxwell
00d1e938c0 feat: Add encryption for OTPs and other verification information (#3164) 
* add: email-otp plugin hashing or encrypting

* add: one-time-token hashing

* chore: cleanup

* add: magic link hashing

* add: two-factor

* chore: typo

Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com>

* remove type from email otp hasher and encryptor

* chore: lint

* chore: fix types

* fix: types & test failing

* chore: lint

* chore: remove console.log

* refactor: remove if block awaits

* refactor: simplify OTP comparison

---------

Co-authored-by: KinfeMichael Tariku <65047246+Kinfe123@users.noreply.github.com>
Co-authored-by: cubic-dev-ai[bot] <191113872+cubic-dev-ai[bot]@users.noreply.github.com>
Co-authored-by: Bereket Engida <Bekacru@gmail.com>
 2025-07-07 09:21:54 -07:00
Erik Müller
b185143b83 fix: import setCookie from tanstack start core package (#3284) 2025-07-07 07:58:30 -07:00
Bereket Engida
9c1c47fc25 chore: release v1.3.0-beta.5 2025-07-06 23:50:08 -07:00
Bereket Engida
fd8cc52977 chore: update dependencies in pnpm-lock.yaml and package.json 
- Bump '@types/bun' from 1.2.17 to 1.2.18
- Update '@better-auth/utils' from 0.2.5 to 0.2.6
- Adjust versioning for 'bun-types' and 'vinxi' to reflect new dependencies
 2025-07-06 23:49:58 -07:00
Maxwell
32d838e37c fix(admin): throw an error if user id in /remove-user is invalid (#3271) 2025-07-06 13:37:02 -07:00
jyc.dev
2de1cd27f6 docs(community-adapters): Remult (#3275) 
* Adding @nerdfolio/remult-better-auth

* add some spaces
 2025-07-06 09:42:43 -07:00
LightTab2
f9b19fb11b fix(jwt): Allow to generate JWKS with other algorithm than the default one (#3219) 
* Fixes #3218

* Lint

* Adds tests to every currently available algorithm

* fixes duplicate test names

Oversight

* Disables EdDSA(Ed448) test for now, removes debug print

Will think if the found bug should be addressed in a seperate issue

* Drops testing support for Diffie-Hellman algorithms

Adds comments why some algorithms are not tested

* new tests are for token generation

On my local machine all tests passed, but on CI some weird error occurred with `getSession`. Changed `client.getSession` to simply `client.token`. Should consider separate tests for `client.getSession`

* More robust tests, checks for failures of called testing functions

Tests `signInWithTestUser` and `getTestInstance` for possible failures

* Should locate which test fails

* removes inline functions

They're the reason why errors escaped `it()`!

* Fixes 'createKeys' inline function replacement

* Adds client tests

* Adheres to AI review, skips a duplicate test

AI might have hallucinated there but w/e

* Final cleanup, `headers` as `var` to infer types correctly

* Headers fix

I forgot to commit one change when typescript check failed and maybe because of that. Setting headers to `var` breaks tests, so gotta revert
 2025-07-06 00:21:09 -07:00
Bereket Engida
b2494d330f chore: release v1.3.0-beta.4 2025-07-05 21:58:49 -07:00
Bereket Engida
3b89319115 Merge branch 'main' into v1.3 2025-07-05 21:58:38 -07:00
Inas Luthfi
2734d07e88 fix(origin-check): support protocol-specific wildcard trusted origins (#3155) 
- Fix wildcard matching to properly handle protocol-specific patterns
- Protocol-specific wildcards (https://*.example.com) now match full origin
- Host-only wildcards (*.example.com) continue to match just the host
- Add comprehensive test coverage for protocol-specific scenarios
- Prevents security vulnerability where HTTP origins could match HTTPS wildcards
 2025-07-05 14:28:13 -07:00
Jack
57baf02f84 feat(anonymous): update generateName to support returning a promise (#3259) 2025-07-04 11:48:00 -07:00
Bereket Engida
e82bcb719c fix(phone-number): verification value should be removed after successful password reset (#3261) 
* fix: should remove verification value after succesful reset password flow

* add test
 2025-07-04 10:49:43 -07:00
Dominik K.
93a5a84851 chore: update expo & cli package.json and readme (#2893) 
* fix: expo package file

* fix: add cli and expo readme

* docs: updated expo plugin readme

* docs(expo): add missing package fields

* docs(cli): improve readme and package file

* baseURL config

* add keywords

* Update packages/cli/README.md

Co-authored-by: Taqib Ibrahim <Taqib.ibrahim@gmail.com>

---------

Co-authored-by: Taqib <taqib.ibrahim@gmail.com>
Co-authored-by: Kinfe123 <kinfishtech@gmail.com>
Co-authored-by: KinfeMichael Tariku <65047246+Kinfe123@users.noreply.github.com>
 2025-07-03 15:33:04 -07:00
Bereket Engida
5b2f87535c Merge remote-tracking branch 'origin/main' into v1.3 2025-07-03 11:41:56 -07:00