Next-Auth v5 is Almost Here! Learn it Fast on the NextJS App Router TODAY!

  Рет қаралды 45,424

Jack Herrington

Jack Herrington

Күн бұрын

Пікірлер: 129
@jordymaryns4945
@jordymaryns4945 8 ай бұрын
The best nextauth tutorial I have seen. Explaining it with all the NextJS features and explaining it with real auth. Other tuturials always use social cred and github. This is a major step up from that.
@tmabid3259
@tmabid3259 8 ай бұрын
really anyone use that built in login from ? it is same as the social cred and github tutorials
@sammavrs
@sammavrs 8 ай бұрын
Been really struggling to understand the purpose and use-case of API/ROUTE with Next. This video single handedly has gotten me to rethink my entire DB architecture. MASSIVE thank you
@AlexanderMoyer-k3b
@AlexanderMoyer-k3b 6 ай бұрын
can you share the repo where this project uses a db?
@lathryx
@lathryx 8 ай бұрын
I've been working on a project for school and I've recently been trying to find a simple auth solution. It just so happens that this video comes out today! 14 hours ago!! I'm amazed and pleased to say the least. This is perfect. Thank you so much.
@aurelianspodarec2629
@aurelianspodarec2629 7 ай бұрын
school? how old are you?
@codernerd7076
@codernerd7076 8 ай бұрын
Don't use betas in production, especially libraries that have a history of app breaking bugs that tend to have awful documentation (they rewrote them but the docs are still not great)! 😅
@shgrth
@shgrth 8 ай бұрын
Correct. Especially Credentials provider. They nerfed it hard and don’t even respond to issues on GitHub.
@IsraelHernandez-ov6lo
@IsraelHernandez-ov6lo 7 ай бұрын
firebase adapter for example
@fakolyfakoly476
@fakolyfakoly476 7 ай бұрын
@@IsraelHernandez-ov6lo exactly, I'm currently stuck on implementing it
@IsraelHernandez-ov6lo
@IsraelHernandez-ov6lo 7 ай бұрын
@@fakolyfakoly476 same here, I switch to use server actions and firebase-admin, I am using for sessiontsegure cookies
@chaitanyayadavalli6180
@chaitanyayadavalli6180 7 ай бұрын
Same for Next auth beta. Unknowingly started new project with this and it sucks. Can't have custom login page.
@manomancan
@manomancan 8 ай бұрын
Thanks so much Jack! I feel like trying it just for the work you put in, but my goodness was it a nightmare when I recently tried the current version. I had to go with Auth0; next-auth docs are the definition of "the road to hell is paved with good intentions".
@TheStallion1319
@TheStallion1319 Ай бұрын
first tut i see for u , i have to say explaining simply means you understand it deeply great tut 👍
@jackn
@jackn 8 ай бұрын
I've used Nextauth a lot but curious about Lucia as well. Thanks for another great video!
@matthewevans37
@matthewevans37 4 ай бұрын
Incredibly helpful video! One thing I wanted to point out is it seems the session data is still accessible from the AuthButton.Client component after the first render. I'm pretty sure this is due to the session object being stored upon validation so the data passed to the SessionProvider by AuthButtonServer is only used in that render cycle... I was able to add a session callback in the nextAuth config to modify the initial session object sent to the client instead and the values aside from name and email are now unavailable. I may be mistaken but I wanted to leave this for anyone else! Immense thanks Jack!
@harshitpant07
@harshitpant07 2 ай бұрын
do you mean that session data persists after first render can you explain what you mean
@realbigsquid
@realbigsquid 8 ай бұрын
Kind of exciting! I wrestled with v5 for a bit a few months ago, and it had a ways to go. I was trying to work with the token and providers and had to do some hacky stuff to get it working.
@oamenEmmy
@oamenEmmy 3 ай бұрын
I followed the NextAuth docs and still had issues, this video is more concise and effective than the official Auth js v5 documentation
@connorchen3937
@connorchen3937 7 ай бұрын
Very very clear tutorial that answers all questions I had + nice job linking the code
@LeonidMaksimshin
@LeonidMaksimshin 5 ай бұрын
Jack, thank you lot! You're a real Master!
@_hugo_cruz
@_hugo_cruz 8 ай бұрын
Thank you very much my dear professor. Necessary this update, a few days ago I had tested the next-auth: "5.0.0-beta.16" and there was some problem with the middleware.
@gabrielcarrizo1310
@gabrielcarrizo1310 7 ай бұрын
I also tested with that version and can confirm that there were some import errors when using middleware. I hope it's resolved in the latest version 😅
@jacksoncaijun4007
@jacksoncaijun4007 4 ай бұрын
5.0.0-beta.20, The API changed, the code isn't working.
@forsh2966
@forsh2966 4 ай бұрын
thanks for tutorial, and i can't wait for the course :)
@harshitpant07
@harshitpant07 2 ай бұрын
can anyone explain this part @14:08 not able to understand what he mean by "calling microservice behind you"
@aPinix
@aPinix 3 ай бұрын
Awesome! What's that font you're using in you editor? Thanks in advance
@MagnusRG
@MagnusRG 5 ай бұрын
Thanks @jherr. Quick question: Why use the SessionProvider, instead of just passing the session object into the client component as props?
@FitimBytyqi-mb1pn
@FitimBytyqi-mb1pn 8 ай бұрын
Hey Jack, great video as always, I wished you added an implementation on how to update the session both client & server side at once, I would love to see how you handle this one.
@jherr
@jherr 8 ай бұрын
Tell me more about that what does that mean to you?
@columkelly99
@columkelly99 8 ай бұрын
In V4 the jwt function takes an optional parameter trigger which you can use to check what triggered the function (if (trigger === 'update')) and then add the new values from session to the token in that conditional. Updates can be triggered on the client from the update function which is destructured from the useSession hook.
@fitimbytyci345
@fitimbytyci345 8 ай бұрын
Yeah I am aware of that but if we have a server component calling the session via auth() and as a children we have a client component calling useSession. If we trigger update via update fn from useSession and update the session in jwt callback you will notice only the client component being updated and not the server component (I don’t know why is that). In order to solve the issue I had to call router.refresh but I hoped theres a better approach. P.S Im talking about the latest version and not v4
@jherr
@jherr 8 ай бұрын
@@fitimbytyci345 There is no live connection between the client and the server. Once the server sends the page to the client it heads off to handle another request from a different client. The client actually has to make a request back to the server to get data, initiate server actions, or perform a refresh in this case. You could do something like websockets to have a live connection. But NextJS doesn't do that for you since very few sites require that functionality and there is significant overhead.
@fitimbytyci345
@fitimbytyci345 8 ай бұрын
@@jherr Thanks a lot for the explanation, it makes sense. Can you elaborate more on how would I use server actions in case to get the fresh updated data?
@mahfoudh_arous
@mahfoudh_arous 7 ай бұрын
thanks a lot, very helpful! and thanks for sharing the code!
@NikosMitselos-wg9ks
@NikosMitselos-wg9ks 8 ай бұрын
can you create an extend tutorial about refresh token?
@kirylchetyrbak6542
@kirylchetyrbak6542 8 ай бұрын
could you please create video how to implements multi organization app with permissions and roles using next auth?
@jherr
@jherr 8 ай бұрын
TBH, I'd use a vendor for that (WorkOS, Auth0, Clerk, etc.) because if you are going to do that then most likely you are doing B2B and eventually you'll need features like SSO and SOC 2.
@kirylchetyrbak6542
@kirylchetyrbak6542 8 ай бұрын
@@jherr thank you for the reply! What would be your vendor of choice for such case? and why? I know you have video on clerk but maybe you have something else in mind
@jherr
@jherr 8 ай бұрын
@@kirylchetyrbak6542 Obviously I'm just one source among many but I've had experience with WorkOS, Clerk and Auth0 in the multi-tenancy B2B space and IMHO WorkOS is currently best in class. SSO onboarding is a huge issue in production and WorkOS has an admin section for your B2B clients to allow them to SSO onboard themselves. That's not something that Clerk or Auth0 had the last time I worked with those products.
@kirylchetyrbak6542
@kirylchetyrbak6542 8 ай бұрын
@@jherr waiting for relevant workos tutorial 😉
@dominikkarbowski6027
@dominikkarbowski6027 7 ай бұрын
Amazing. I would love to see an example using auth.js with an database.
@LaLoses
@LaLoses 8 ай бұрын
Man, this is too much, it's magic
@sealuke2724
@sealuke2724 8 ай бұрын
Thanks, could you elaborate more about refresh token in app dir + next auth v5?
@vronus007
@vronus007 6 ай бұрын
Awesome, thanks a lot! I would be interested in setting roles for users (by connecting with an own database) and allowing only certain paths for admins or other users. I have dug through the auth v5 docs and played around with prisma but eventually made it worse lol.
@kettenbach
@kettenbach 8 ай бұрын
How to decide between next-auth, clerk, kind? 🤔
@ParasBansal10
@ParasBansal10 8 ай бұрын
The biggest difference is next-auth gives you the control to save the user's data on your database, so there is no charge other than managing you own database. While the other applications like clerk and kinde will save them for you and charge accordingly.
@kettenbach
@kettenbach 8 ай бұрын
@@ParasBansal10 good point
@semyaza555
@semyaza555 6 ай бұрын
What is everyone using for Mobile (i.e. Expo/React Native)?
@lala-wb7gi
@lala-wb7gi 7 ай бұрын
I appreciate the suggestion, but I'm not planning to use it in production yet. There seems to be an issue with the session not being updated after login and logout. I couldn't find a clear explanation in the documentation on how to fix this. Can you clarify?
@dearfrankg
@dearfrankg 5 ай бұрын
I have a navbar with signIn/signOut. After signing out the session does not update. Can you make an example that toggles between signIn and signOut button without going to signin dialog automatically. P.S. Great work as usual.
@dearfrankg
@dearfrankg 5 ай бұрын
my solution was that you have to import signIn/signOut from different locations depending on client/server component. server: import from auth, client: import from next-auth/react
@brikka
@brikka 7 ай бұрын
thanks! your to the point tutorials are perfect! :D
@psyferinc.3573
@psyferinc.3573 7 ай бұрын
when he was working on the middleware, what was the point of him actually stating that if its not favicon... i couldnt understand why this makes sense. to choose those as a middle ware authentication.
@theoniemann8042
@theoniemann8042 7 ай бұрын
hi great video, i would have loved to see how you can do custom pages signin and signout and especially mix in with signUP when it s the first time the user tries to create an account what we should do
@eliuddyn
@eliuddyn 8 ай бұрын
Amazing 🔥🔥
@Zinu4
@Zinu4 5 ай бұрын
What VSCode theme you are using?
@webdeveloper2769
@webdeveloper2769 4 ай бұрын
What about refresh token axios interceptors 401 handling?
@elhamuddin.mahmoodi
@elhamuddin.mahmoodi 3 ай бұрын
Can we use next auth with output: export in next config?
@袁金忠
@袁金忠 25 күн бұрын
does the loginpage is the default page of auth.js ?
@yiannis_p
@yiannis_p 7 ай бұрын
Do they allow the database strategy using the credentials provider now ?
@Zinu4
@Zinu4 5 ай бұрын
Great tutorial
@prakashk8984
@prakashk8984 7 ай бұрын
Hi @jherr , How to add webpack config.expernals in nextjs app?
@alfredmadere9030
@alfredmadere9030 7 ай бұрын
I understand that you can secure each individual server action by checking the auth before doing the action but is there a middleware equivalent that will protect server actions from being called when the client is not authenticated? If not, if you forget to check for authentication in an important server action you could get screwed. Does anyone know how to get around this?
@_bestbeast
@_bestbeast 7 ай бұрын
I am getting error in production as i deployed it on gcp
@Anonimbus
@Anonimbus 7 ай бұрын
How can i add a custom signIn page to this?
@mattburgess5697
@mattburgess5697 7 ай бұрын
Is this coming soon like Turbopack is, or like... actually soon?
@Rick_griepje
@Rick_griepje 5 ай бұрын
why my button looks that is not have css
@milisstudio9931
@milisstudio9931 6 ай бұрын
how set basePath in nextjs 14 and next auth beta v5? I have add basePath in next.config.mjs and add basePath in sessionProvider but still error
@Shubham-yc6nz
@Shubham-yc6nz 7 ай бұрын
Getting error while adding prisma adapter with Auth.js
@PhilipAlexanderHassialis
@PhilipAlexanderHassialis 8 ай бұрын
Quick question tho: when you are signing out, are *all* of the auth cookies cleared browser side? Also also, when using the Link component to go to an authenticated route, does it forego the traditional caching that Next has (even with prefetch="false") and force the redirection through the middleware to check if the route is authenticated? Because e.g. a user may be authenticated to go to a page, they go there, they move somewhere else, meanwhile the admin unauthorizes the page route for the user but within the next 30 seconds, the user can still go in the page because its within the 30 seconds of caching. Does NextAuth5 allow for total granularity of user interactivity with the server?
@jherr
@jherr 8 ай бұрын
I feel like your setting up for a "my service does this" type deal.
@bibblebabl
@bibblebabl 8 ай бұрын
AFAIK the default base path is already api/auth
@kumoleo
@kumoleo 7 ай бұрын
I didn't get the "headers: headers()" part. Is it something related to the Credentials Provider? Cause I'm using a different Provider and my Headers function doesn't return any authorization atrr :(
@jherr
@jherr 7 ай бұрын
The `headers: headers()` part is about taking the cookie from the incoming request and routing it on to another service (I don't recall exactly what I was doing).
@r.in.shibuya
@r.in.shibuya 4 ай бұрын
Naming a page component "TestRoute" is not the best of practices... as Nextjs has clear distinctions on what a page and route components are.
@gabrielbianchi2246
@gabrielbianchi2246 8 ай бұрын
I do not recommend to use fetch for an api handler on a RSC.
@jherr
@jherr 8 ай бұрын
Agreed.
@TheDMHP
@TheDMHP 8 ай бұрын
@@jherr Could you guys elaborate on this? Seems like an intereting note would like to hear why
@sammavrs
@sammavrs 8 ай бұрын
1+ on the elaborating Please. With NextAuth's SIGNOUT it auto deletes the jwt token. Im TOTALLY lost...? 😅
@jherr
@jherr 8 ай бұрын
I'm not sure what this has to do with the JWT. The issue is in the last example of the app calling back to itself. The reason to NOT do it is that it simply adds latency. The API runs on the server, and the fetch in the RSC runs in the server, so whatever the API is returning could just be gotten directly. Best to just remove the code from the API and put it in a shared function and just call it from both the API and the RSC directly. If security is required, then add it to the function and both the RSC and the API get symmetrical security. This specific anti-pattern was mentioned by Lee Robinson (VP of Next) in his video on top ten App Router anti-patterns.
@TheDMHP
@TheDMHP 8 ай бұрын
@@jherr you’re the bomb jack. Great explanation, love your work as always.
@nilanga89
@nilanga89 8 ай бұрын
Thanks, is Next-Auth v5 support mobile login(react native)?
@DavidSmith-ef4eh
@DavidSmith-ef4eh 6 ай бұрын
This would only work if the nextjs app is hosted on one server? Also, it wouldn't be able to create an SSG build for the routes using it?
@jherr
@jherr 6 ай бұрын
Yeah, AFAIK this won't work with SSG. The idea is to have the session on both the client and the server for safe API access.
@DavidSmith-ef4eh
@DavidSmith-ef4eh 6 ай бұрын
@@jherr I was thinking something more like JWT tokens, where only the API is protected. This way it could be an SSG, where all the auth features are only available on the frontend via apis.Basically, for auth users it would mostly use CSR, guests would get the SSG version.
@jherr
@jherr 6 ай бұрын
@@DavidSmith-ef4eh You can select static/dynamic per route. So you could have un-authenticated static routes for guests and authenticated dynamic routes for folks who are logged in.
@DavidSmith-ef4eh
@DavidSmith-ef4eh 6 ай бұрын
​@@jherr the problem is, it would be the same routes for our frontend app. Since they Top menu bar changes based on user login state and is shared in all pages/layouts. Also, a bit afraid of using SSR anywhere. We had ddos attacks, and nextjs is very vulnerable to it, since it uses lots of cpu in SSR. Even cloudflare couldn't protect us, since the attackers have large numbers of different IPs. Only solution I could think of, was SSG and serving static files and CSR for logged in users.
@jherr
@jherr 6 ай бұрын
@@DavidSmith-ef4eh You know your situation better than I do. I'm just saying, you could have SSG pages that have client components that can trigger the login sequence. And then have SSR based authed routes. And you could put in cloudfront rules in front of the SSR pages to check for the JWT. So unauthenticated requests wouldn't get to origin.
@im_sieta
@im_sieta 7 ай бұрын
❤❤❤
@ahmedahmedx9600
@ahmedahmedx9600 5 ай бұрын
Please what browser you are using ?
@jherr
@jherr 5 ай бұрын
Arc
@ahmedahmedx9600
@ahmedahmedx9600 5 ай бұрын
@jherr I downloaded it but I notice the toolbar style is so minimal than yours, do I need to edit it ? It missing alot of icons and also I have url on the middle
@jherr
@jherr 5 ай бұрын
@@ahmedahmedx9600 You mean the icons below the URL input? You just drag a page up below the URL and drop it and it makes a toolbar item. And the URL in the middle, do you mean pages pop-up in the middle of the window? That's by design.
@ahmedahmedx9600
@ahmedahmedx9600 5 ай бұрын
@jherr the top toolbar where url placed there is icons in the left, I only have icon for translation only
@ahmedahmedx9600
@ahmedahmedx9600 5 ай бұрын
​@jherr you have url on the right and icons on the left, I only have url in the middle and only transition icon and how you change color to blue
@avishekdas4947
@avishekdas4947 7 ай бұрын
Course update??
@jherr
@jherr 7 ай бұрын
Working on it every day. I am genuinely getting close to the first release.
@StingSting844
@StingSting844 6 ай бұрын
Good stuff but i really want people to double think before touching Next. Especially if your app is behind a login then seriously consider other frameworks. Next has been a nightmare and it's annoying because the fans keep calling us dumb for running into issues
@sushieatingcobra
@sushieatingcobra 8 ай бұрын
thnx
@BK-fk4gf
@BK-fk4gf 5 ай бұрын
Best
@frosty129
@frosty129 5 ай бұрын
"almost here". yea nah. 7 months and still in beta. I expect two more years of beta, then few more years of release candidate, then v5 in the next century.
@mattwooddc
@mattwooddc 8 ай бұрын
we herr
@schmellmafeet
@schmellmafeet 8 ай бұрын
Don't leak email
@DeeCoin-f2t
@DeeCoin-f2t 6 ай бұрын
Auth.js is in beta mode for long time. So many bugs
@chuckynorris616
@chuckynorris616 2 ай бұрын
why does he sound like philip defranco, are you his father?
@jherr
@jherr 2 ай бұрын
I have no idea who that is. So I'm pretty sure I'm not his father.
@Toulkun
@Toulkun 7 ай бұрын
They keep ruining Nextjs and its extensions including this auth one, constant unnecessary changes for nothing. No wonder big companies dont like Next and wont even bother using it, but instead just use React and already known stable 0auth and other's that dont give you headache. I believe in future even Svelte will crush Nextjs, or better even if React becomes hybrid for both client and server. This hell with Next needs to go away or just remove it from existence.
@jherr
@jherr 7 ай бұрын
React is never going to do the server part. It's a rendering library that is meant to be used in combination with a framework. Thus the listed set of recommended frameworks in the docs. "No wonder big companies dont like Next and wont even bother using it..." Nice hyperbole there. What's your sample size? Because of the "big companies" I've worked with, the vast majority use Next.
@AlexanderMoyer-k3b
@AlexanderMoyer-k3b 6 ай бұрын
this is just a worthless piece of code honestly. how do i put the users and passwords into a db and use authjs? that's the real question
@jherr
@jherr 6 ай бұрын
This video was more about filling in the details of how to connect Next-Auth v5 to the App Router because the docs don't cover that. The way to connect next-auth to a local db is the same as it was before and is covered by the documentation.
@bobbyboxer2664
@bobbyboxer2664 8 ай бұрын
This is too advanced for me. Pace is way too fast and got lost in the sauce way too quickly. Based on the comments it seems its well explained but ... yeah 😪 I feel l understand better when I see things built in real time rather than this highlight method... gives my mind some space to process things up as they appear on screen rather than being shocked by a snippet of code on screen and have it being explained real time without me having any type of context prior even if I stop the video to read the code first... anyway... I guess I'm not at this level yet womp womp
5 Hidden React Server Function TRAPS Beginners Fall Into
21:31
Jack Herrington
Рет қаралды 10 М.
УЛИЧНЫЕ МУЗЫКАНТЫ В СОЧИ 🤘🏻
0:33
РОК ЗАВОД
Рет қаралды 7 МЛН
🎈🎈🎈😲 #tiktok #shorts
0:28
Byungari 병아리언니
Рет қаралды 4,5 МЛН
Learn Next.js Parallel Routes In 16 Minutes
16:18
Web Dev Simplified
Рет қаралды 142 М.
Next.js Authentication & Login | Nextjs 15 Full Stack Project
42:17
NextJS Feature Flagging Made Easy
14:27
Jack Herrington
Рет қаралды 19 М.
Next.js Full Stack Project w/ Nextjs 15 & React 19
1:31:19
Dave Gray
Рет қаралды 44 М.
Tanstack Start vs NextJS - Server Functions Battle
16:02
Jack Herrington
Рет қаралды 19 М.
Authentication Flow in Next.js (Complete Tutorial)
30:37
Cosden Solutions
Рет қаралды 32 М.
How To Develop 2 AI Apps in 10 Minutes!
12:22
Jack Herrington
Рет қаралды 9 М.
УЛИЧНЫЕ МУЗЫКАНТЫ В СОЧИ 🤘🏻
0:33
РОК ЗАВОД
Рет қаралды 7 МЛН