LukeParke/better-auth
1
0
Fork 0
mirror of https://github.com/LukeHagar/better-auth.git synced 2025-12-08 12:27:44 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ce4d250ad55ced8ec1fb271db50836faf449d301
better-auth/docs/content/docs/integrations/fastify.mdx
Samson Tesfaye 9e70836d12 docs: add Fastify integration guide
2025-05-02 05:37:18 -07:00

122 lines
3.5 KiB
Plaintext
Raw Blame History

---
title: Better Auth Fastify Integration Guide
description: Learn how to seamlessly integrate Better Auth with your Fastify application.
---
This guide provides step-by-step instructions for configuring both essential handlers and CORS settings.
<Callout type="important">
A configured Better Auth instance is required before proceeding. If you haven't set this up yet, please consult our [Installation Guide](/docs/installation).
</Callout>
### Prerequisites
Verify the following requirements before integration:
- **Node.js Environment**: v16 or later installed
- **ES Module Support**: Enable ES modules in either:
- `package.json`: `{ "type": "module" }`
- TypeScript `tsconfig.json`: `{ "module": "ESNext" }`
- **Fastify Dependencies**:
```package-install
fastify @fastify/cors
```
<Callout type="tip"> For TypeScript: Ensure your `tsconfig.json` includes `"esModuleInterop": true` for optimal compatibility. </Callout>
### Authentication Handler Setup
Configure Better Auth to process authentication requests by creating a catch-all route:
```ts title="server.ts"
import Fastify from "fastify";
import { auth } from "./auth"; // Your configured Better Auth instance
const fastify = Fastify({ logger: true });
// Register authentication endpoint
fastify.route({
method: ["GET", "POST"],
url: "/api/auth/*",
async handler(request, reply) {
try {
// Construct request URL
const url = new URL(request.url, `http://${request.headers.host}`);
// Convert Fastify headers to standard Headers object
const headers = new Headers();
Object.entries(request.headers).forEach(([key, value]) => {
if (value) headers.append(key, value.toString());
});
// Create Fetch API-compatible request
const req = new Request(url.toString(), {
method: request.method,
headers,
body: request.body ? JSON.stringify(request.body) : undefined,
});
// Process authentication request
const response = await auth.handler(req);
// Forward response to client
reply.status(response.status);
response.headers.forEach((value, key) => reply.header(key, value));
reply.send(response.body ? await response.text() : null);
} catch (error) {
fastify.log.error("Authentication Error:", error);
reply.status(500).send({
error: "Internal authentication error",
code: "AUTH_FAILURE"
});
}
}
});
// Initialize server
fastify.listen({ port: 4000 }, (err) => {
if (err) {
fastify.log.error(err);
process.exit(1);
}
console.log("Server running on port 4000");
});
```
### Trusted origins
When a request is made from a different origin, the request will be blocked by default. You can add trusted origins to the `auth` instance.
```ts
export const auth = betterAuth({
trustedOrigins: ["http://localhost:3000", "https://example.com"],
});
```
### Configuring CORS
Secure your API endpoints with proper CORS configuration:
```ts
import fastifyCors from "@fastify/cors";
// Configure CORS policies
fastify.register(fastifyCors, {
origin: process.env.CLIENT_ORIGIN || "http://localhost:3000",
methods: ["GET", "POST", "PUT", "DELETE", "OPTIONS"],
allowedHeaders: [
"Content-Type",
"Authorization",
"X-Requested-With"
],
credentials: true,
maxAge: 86400
});
// Mount authentication handler after CORS registration
// (Use previous handler configuration here)
```
<Callout type="warning"> Always restrict CORS origins in production environments. Use environment variables for dynamic configuration. </Callout>
Reference in New Issue View Git Blame Copy Permalink