feat: update package.json scripts and add prisma seed command

refactor: improve refresh-sessions API handler for better readability and error handling fix: enhance NextAuth configuration with session token handling and cookie settings chore: update dashboard API handlers for consistency and improved error responses style: format dashboard API routes for better readability feat: implement forgot password and reset password functionality with security improvements feat: add user registration API with email existence check and initial company creation chore: create initial database migration and seed script for demo data style: clean up PostCSS and Tailwind CSS configuration files fix: update TypeScript configuration for stricter type checking chore: add development environment variables for NextAuth feat: create Providers component for session management in the app chore: initialize Prisma migration and seed files for database setup
2026-01-16 15:32:10 +01:00 · 2025-05-21 21:41:07 +02:00
parent b6b67dcd78
commit 50b2fbda55
42 changed files with 8233 additions and 7627 deletions
--- a/pages/api/auth/[...nextauth].ts
+++ b/pages/api/auth/[...nextauth].ts
@ -5,85 +5,100 @@ import bcrypt from "bcryptjs";

 // Define the shape of the JWT token
 declare module "next-auth/jwt" {
-    interface JWT {
-        companyId: string;
-        role: string;
-    }
+  interface JWT {
+    companyId: string;
+    role: string;
+  }
 }

 // Define the shape of the session object
 declare module "next-auth" {
-    interface Session {
-        user: {
-            id?: string;
-            name?: string;
-            email?: string;
-            image?: string;
-            companyId: string;
-            role: string;
-        };
-    }
+  interface Session {
+    user: {
+      id?: string;
+      name?: string;
+      email?: string;
+      image?: string;
+      companyId: string;
+      role: string;
+    };
+  }

-    interface User {
-        id: string;
-        email: string;
-        companyId: string;
-        role: string;
-    }
+  interface User {
+    id: string;
+    email: string;
+    companyId: string;
+    role: string;
+  }
 }

 export const authOptions: NextAuthOptions = {
-    providers: [
-        CredentialsProvider({
-            name: "Credentials",
-            credentials: {
-                email: { label: "Email", type: "text" },
-                password: { label: "Password", type: "password" },
-            },
-            async authorize(credentials) {
-                if (!credentials?.email || !credentials?.password) {
-                    return null;
-                }
+  providers: [
+    CredentialsProvider({
+      name: "Credentials",
+      credentials: {
+        email: { label: "Email", type: "text" },
+        password: { label: "Password", type: "password" },
+      },
+      async authorize(credentials) {
+        if (!credentials?.email || !credentials?.password) {
+          return null;
+        }

-                const user = await prisma.user.findUnique({
-                    where: { email: credentials.email }
-                });
+        const user = await prisma.user.findUnique({
+          where: { email: credentials.email },
+        });

-                if (!user) return null;
+        if (!user) return null;

-                const valid = await bcrypt.compare(credentials.password, user.password);
-                if (!valid) return null;
+        const valid = await bcrypt.compare(credentials.password, user.password);
+        if (!valid) return null;

-                return {
-                    id: user.id,
-                    email: user.email,
-                    companyId: user.companyId,
-                    role: user.role,
-                };
-            },
-        }),
-    ],
-    session: { strategy: "jwt" },
-    callbacks: {
-        async jwt({ token, user }) {
-            if (user) {
-                token.companyId = user.companyId;
-                token.role = user.role;
-            }
-            return token;
-        },
-        async session({ session, token }) {
-            if (token && session.user) {
-                session.user.companyId = token.companyId;
-                session.user.role = token.role;
-            }
-            return session;
-        },
+        return {
+          id: user.id,
+          email: user.email,
+          companyId: user.companyId,
+          role: user.role,
+        };
+      },
+    }),
+  ],
+  session: {
+    strategy: "jwt",
+    maxAge: 30 * 24 * 60 * 60, // 30 days
+  },
+  cookies: {
+    sessionToken: {
+      name: `next-auth.session-token`,
+      options: {
+        httpOnly: true,
+        sameSite: "lax",
+        path: "/",
+        secure: process.env.NODE_ENV === "production",
+      },
    },
-    pages: {
-        signIn: "/login",
+  },
+  callbacks: {
+    async jwt({ token, user }) {
+      if (user) {
+        token.companyId = user.companyId;
+        token.role = user.role;
+      }
+      return token;
    },
-    secret: process.env.NEXTAUTH_SECRET || "fallback-secret-key-change-in-production",
+    async session({ session, token }) {
+      if (token && session.user) {
+        session.user.companyId = token.companyId;
+        session.user.role = token.role;
+      }
+      return session;
+    },
+  },
+  pages: {
+    signIn: "/login",
+  },
+  secret: process.env.NEXTAUTH_SECRET,
+  debug: process.env.NODE_ENV === "development",
 };

 export default NextAuth(authOptions);