Skip to main content

Interface: CallbacksOptions<P, A>

index.CallbacksOptions

Documentation

Type parameters​

NameType
PProfile
AAccount

Properties​

jwt​

β€’ jwt: (params: { token: JWT ; account?: null | A ; isNewUser?: boolean ; profile?: P ; user?: User | AdapterUser }) => Awaitable<JWT>

Type declaration​

β–Έ (params): Awaitable<JWT>

This callback is called whenever a JSON Web Token is created (i.e. at sign in) or updated (i.e whenever a session is accessed in the client). Its content is forwarded to the session callback, where you can control what should be returned to the client. Anything else will be kept from your front-end.

⚠ By default the JWT is signed, but not encrypted.

Documentation | session callback

Parameters​
NameType
paramsObject
params.tokenJWT
params.account?null | A
params.isNewUser?boolean
params.profile?P
params.user?User | AdapterUser
Returns​

Awaitable<JWT>


redirect​

β€’ redirect: (params: { baseUrl: string ; url: string }) => Awaitable<string>

Type declaration​

β–Έ (params): Awaitable<string>

This callback is called anytime the user is redirected to a callback URL (e.g. on signin or signout). By default only URLs on the same URL as the site are allowed, you can use this callback to customise that behaviour.

Documentation

Parameters​
NameTypeDescription
paramsObject-
params.baseUrlstringDefault base URL of site (can be used as fallback)
params.urlstringURL provided as callback URL by the client
Returns​

Awaitable<string>


session​

β€’ session: (params: { session: Session ; token: JWT ; user: User | AdapterUser }) => Awaitable<Session>

Type declaration​

β–Έ (params): Awaitable<Session>

This callback is called whenever a session is checked. (Eg.: invoking the /api/session endpoint, using useSession or getSession)

⚠ By default, only a subset (email, name, image) of the token is returned for increased security.

If you want to make something available you added to the token through the jwt callback, you have to explicitly forward it here to make it available to the client.

Documentation | jwt callback | useSession | getSession |

Parameters​
NameType
paramsObject
params.sessionSession
params.tokenJWT
params.userUser | AdapterUser
Returns​

Awaitable<Session>


signIn​

β€’ signIn: (params: { account: null | A ; user: User | AdapterUser ; credentials?: Record<string, CredentialInput> ; email?: { verificationRequest?: boolean } ; profile?: P }) => Awaitable<string | boolean>

Type declaration​

β–Έ (params): Awaitable<string | boolean>

Use this callback to control if a user is allowed to sign in. Returning true will continue the sign-in flow. Throwing an error or returning a string will stop the flow, and redirect the user.

Documentation

Parameters​
NameTypeDescription
paramsObject-
params.accountnull | A-
params.userUser | AdapterUser-
params.credentials?Record<string, CredentialInput>If Credentials provider is used, it contains the user credentials
params.email?ObjectIf Email provider is used, on the first call, it contains a verificationRequest: true property to indicate it is being triggered in the verification request flow. When the callback is invoked after a user has clicked on a sign in link, this property will not be present. You can check for the verificationRequest property to avoid sending emails to addresses or domains on a blocklist or to only explicitly generate them for email address in an allow list.
params.email.verificationRequest?boolean-
params.profile?PIf OAuth provider is used, it contains the full OAuth profile returned by your provider.
Returns​

Awaitable<string | boolean>