github-starred/better-auth
2
0
Fork 0
mirror of https://github.com/better-auth/better-auth.git synced 2026-06-02 04:16:38 -05:00
Code Issues 2.5k Packages Projects Releases 112 Wiki Activity
3,477 Commits 105 Branches 1,315 Tags
158581d7da50502f400d6738985fc0c1943d7dd0
Commit Graph

3477 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Bereket Engida
158581d7da chore: remove mcp impl from demo 2025-06-01 10:20:32 -07:00
Bereket Engida
29ebab00f5 chore: remove discord release workflow 2025-06-01 08:52:28 -07:00
Rahul Mishra
75545be4a0 chore: fix discord release message workflow (#2866) 2025-06-01 08:19:54 -07:00
Maxwell
05ec120aba docs: simplified comparisons page (#2867) 2025-06-01 08:07:45 -07:00
Bereket Engida
fcb28e790a chore: release v1.2.9-beta.8 v1.2.9-beta.8 2025-05-31 23:40:04 -07:00
Rohan Godha
2fe2b2dba9 fix(stripe): inconsistency preventing subscription upgrades (#2864) 2025-05-31 23:39:44 -07:00
Harry Buisman
662762cd8e docs: fix SSO redirect URL (#2863) 2025-05-31 23:15:28 -07:00
Bereket Engida
96634ceefd chore: release v1.2.9-beta.7 v1.2.9-beta.7 2025-05-31 18:13:55 -07:00
Nicolas Torres
f735575b69 fix(api-key): rate limits not working (#2514) 
* Makes sure to check api key rate limits

* Fix suggestions

* adds missing error code

* function doesnt need to be in the closure, it can be at module level
 2025-05-31 18:12:47 -07:00
Felipe Rocha
fa1e702912 docs: remove unnecessary await in permission checks (#2859) 2025-05-31 14:27:16 -07:00
KinfeMichael Tariku
a8c65d9871 docs: list user with query filter operator (#2857) 2025-05-31 13:09:29 -07:00
BadPirate
13591daa7d fix(oidc-provider): authorize post-auth flow (#2849) 
* oidcProvider authorize post-auth flow fix

Issue:

Recommended way to handle login for OIDC Provider flow is to call
authClient.signIn -- However, many of the callbacks in authorize.ts
endpoint directly throw their redirects, in many of these cases this
is not desired as it will redirect the fetch request when the intent
is to redirect the browser instead.

Fix:

If the call is coming from a cors (non-browser navigate) fetch call
when doing the consent page redirect or the final authorization
callback redirect, redirect using a hint in json payload to authClient
rather than attempting to redirect the CORS call.

This resolves issues both with CORS (that people were seeing) as
well as well as removing the need for the work around hack provided
in #2461

Tested: Locally, using updated code, oidcProvider and a genericOauth
client. Verified happy paths for login with / without scope, there
are some other issues with consent flow in general, but I'll address
those in a different PR.

* cleanup and lint

---------

Co-authored-by: Bereket Engida <bekacru@gmail.com>
 2025-05-31 09:52:18 -07:00
Bereket Engida
fd727e515d chore: update kysley to 0.28.2 2025-05-31 09:14:05 -07:00
Bereket Engida
5c864f4482 docs: fix missing avatar url 2025-05-31 08:46:23 -07:00
KinfeMichael Tariku
0d33d9d8ed docs: basePath options in auth config (#2851) 2025-05-31 01:33:54 -07:00
KinfeMichael Tariku
9e0749ab2a fix(demo): avoid page refresh on session termination (#2850) 2025-05-31 01:00:06 -07:00
KinfeMichael Tariku
06ca627a6a fix: demo build & upgrades (#2848) 2025-05-31 00:22:02 -07:00
KinfeMichael Tariku
77c38594bb docs: generic oauth options (#2845) 2025-05-30 17:32:20 -07:00
KinfeMichael Tariku
872a65adc1 docs: baseURL option in auth config (#2844) 2025-05-30 16:50:57 -07:00
Bereket Engida
dcbaddab8c docs: remove yc launch embed 2025-05-30 15:51:12 -07:00
KinfeMichael Tariku
13f6476b6c chore: update error code message typo (#2839) 2025-05-30 02:42:30 -07:00
KinfeMichael Tariku
84d1853ad5 docs: mcp blog typo (#2833) 2025-05-29 20:30:19 -07:00
Bereket Engida
7c147ed34e chore: release v1.2.9-beta.6 v1.2.9-beta.6 2025-05-29 19:53:44 -07:00
Taesu
efc655de80 docs: add missing trustedOrigins option (#2822) 2025-05-28 21:31:38 -07:00
Taka
cb5de99501 docs: add callback URL property to sign up method (#2815) 2025-05-28 15:30:06 -07:00
CarbonNeuron
746ee1fd61 fix: microsoft entra token refresh scope (#2816) 2025-05-28 15:13:45 -07:00
crutchtheclutch
fdee04fdc7 feat(customPaths): provide an option to modify and map api paths (#2193) 2025-05-28 10:32:03 -07:00
KinfeMichael Tariku
5d1f1e3cbd fix: allow contains filter for users in admin (#2810) 2025-05-28 00:21:27 -07:00
KinfeMichael Tariku
272360f426 fix: encoded callbackURL (#2809) 2025-05-27 23:36:17 -07:00
Snehendu Roy
ebf06eb00c docs: email otp verification guide (#2717) 2025-05-27 23:09:52 -07:00
KinfeMichael Tariku
8d82cf5959 docs: remove incorrect reference to nullable fieldAttribute 2025-05-27 17:33:03 -07:00
Julio Montoya
95d79deb30 docs: update hono intergration (#2738) 2025-05-27 17:00:54 -07:00
CZ Tang
c3caf1c8da docs: update github docs (#2783) 2025-05-27 16:45:58 -07:00
YUSSUF SHEIKH
dea5c9d13e chore: improve password reset for unregistered emails 2025-05-27 16:26:02 -07:00
KinfeMichael Tariku
152b2e028c chore: improve password reset message (#2807) 2025-05-27 16:15:49 -07:00
KinfeMichael Tariku
7ad8129cf9 docs: incorrect reference link (#2806) 2025-05-27 16:02:05 -07:00
KinfeMichael Tariku
25b7f4f2d6 chore: add clerk migration video guide 2025-05-27 01:33:23 -07:00
Yerzhan Zhamashev
640bf478a4 fix: SSR handling in useAuthQuery to prevent hydration issues (#2776) 
* fix: enhance SSR handling in useAuthQuery to prevent hydration issues

* simplify the ssr handling
 2025-05-26 21:11:04 -07:00
Usman S. (Max Programming)
aab97bbc8f docs: fix minor inconsistency (#2790) 2025-05-25 18:23:17 -07:00
Bereket Engida
e3aac89299 fix(apple): response type should be set to idToken code to get full user profile data 2025-05-25 17:57:13 -07:00
Cherish
f748171df6 docs: typo fix in seesion-management docs(#2785) 2025-05-25 12:57:10 -07:00
KinfeMichael Tariku
8bff45a5cc fix: prisma schema not required on dev/bun (#2787) 2025-05-25 01:21:06 -07:00
Rahul Mishra
78ebec692c docs: fix scopes array for mcp plugin oidc (#2770) 2025-05-25 01:18:57 -07:00
manfromexistence
7150c378bb docs: typo fix on facebook client secret value 2025-05-25 00:59:59 -07:00
Maxwell
75a23f5362 update(kysley-adapter): Allow providing debug logs 2025-05-25 06:57:26 +10:00
ping-maxwell
240443efc4 fix: init snapshot 2025-05-25 06:31:56 +10:00
Maxwell
75f1f9384c Merge branch 'main' into update/kysley-adapter/debug-logs 2025-05-25 06:25:42 +10:00
ping-maxwell
1a02245419 chore: lint 2025-05-25 00:53:51 +10:00
Bereket Engida
eb3f7c507c docs: remove blogs 2025-05-24 00:40:41 -07:00
Stephen Jason Wang
43513e98d1 fix: avoid refreshing tokens if the provider doesn't return refresh tokens (#2764) 
* fix(auth): avoid refreshing tokens without expiration

* check for refresh token and also allow returning access tokens even for providers that doesn't implement refresh token

---------

Co-authored-by: Bereket Engida <bekacru@gmail.com>
 2025-05-23 14:16:01 -07:00