[GH-ISSUE #2462] useSession runs on server & produces hydration errors #17833

New Issue

GiteaMirror · 2026-04-15T16:10:35-05:00

GiteaMirror commented

2026-04-15 16:10:35 -05:00

Originally created by @papsavas on GitHub (Apr 27, 2025).
Original GitHub issue: https://github.com/better-auth/better-auth/issues/2462

Is this suited for github?

Yes, this is suited for github

Additional context

similar to Organization delete does not throw an error on an invalid session (#1713)
regression from #960 because of destructuring. Using authClient.useSession defaults isPending to true on server (correct behavior)
not a case of https://github.com/better-auth/better-auth/issues/1006#issuecomment-2742622552 interchange

To Reproduce

setup better-auth on next.js
create auth client
destructure & export useSession (works correctly on authClient.useSession())
use it in a client component
console.log its content
early return if isPending is true
get a hydration mismatch between isPending early return (<div>) & following render (<SignInDiscord />)

//lib/auth-client.ts
import { createAuthClient } from "better-auth/react";
export const authClient = createAuthClient({
  /** The base URL of the server (optional if you're using the same domain) */
  baseURL: "http://localhost:3000",
});

export const { signIn, signUp, signOut, useSession } = createAuthClient();

"use client";
import { signOut, useSession } from "@/lib/auth-client";
import { Button } from "../ui/button";
import {
  Popover,
  PopoverContent,
  PopoverTrigger,
} from "@/components/ui/popover";
import { useState } from "react";
import SignInDiscord from "../SignInDiscord";

const NavbarProfile = () => {
  const [open, setOpen] = useState(false);
  const { data: session, isPending, ...rest } = useSession();
  console.log({ isPending, session, ...rest }); //watch server logs
  if (isPending) return <div>Pending Auth...</div>;
  if (!session) return <SignInDiscord />;

  return (
    <Popover open={open} onOpenChange={setOpen}>
      <PopoverTrigger className="cursor-pointer">
        <div className="flex items-center gap-2">{session.user.name}</div>
      </PopoverTrigger>
      <PopoverContent className="w-fit">
        <Button
          variant={"destructive"}
          onClick={async () => {
            signOut();
            setOpen(false);
          }}
        >
          SignOut
        </Button>
      </PopoverContent>
    </Popover>
  );
};

export default NavbarProfile;

Current vs. Expected behavior

Hooks on client components shouldn't run on the server. Instead, useSession runs resulting in:

{
  isPending: false,
  session: null,
  error: { status: 0, statusText: '' },
  isRefetching: false,
  refetch: [Function: refetch]
}

which messes up rendering and produces hydration errors.

What version of Better Auth are you using?

1.2.7

Provide environment information

- OS: Windows
- Browser: Chrome
- "next": "15.3.1",
- "react": "^19.1.0",

Which area(s) are affected? (Select all that apply)

Client

Auth config (if applicable)

export const auth = betterAuth({
  database: drizzleAdapter(db, {
    provider: "mysql",
    schema,
  }),
  emailAndPassword: { enabled: true },
  socialProviders: {
    discord: {
      clientId: process.env.NEXT_PUBLIC_DISCORD_CLIENT_ID!,
      clientSecret: process.env.DISCORD_CLIENT_SECRET!,
    },
  },
  session: {
    expiresIn: 60 * 60 * 24 * 7,
    updateAge: 60 * 60 * 24,
  },
});

Originally created by @papsavas on GitHub (Apr 27, 2025). Original GitHub issue: https://github.com/better-auth/better-auth/issues/2462 ### Is this suited for github? - [x] Yes, this is suited for github ### Additional context - similar to #1713 - regression from #960 because of destructuring. Using `authClient.useSession` defaults `isPending` to `true` on server (correct behavior) - not a case of https://github.com/better-auth/better-auth/issues/1006#issuecomment-2742622552 interchange ### To Reproduce 1. [setup better-auth on next.js](https://www.better-auth.com/docs/integrations/next) 2. create auth client 3. **destructure & export** `useSession` (works correctly on `authClient.useSession()`) 4. use it in a client component 5. console.log its content 6. early return if `isPending` is true 7. get a hydration mismatch between isPending early return (`<div>`) & following render (`<SignInDiscord />`) ```tsx //lib/auth-client.ts import { createAuthClient } from "better-auth/react"; export const authClient = createAuthClient({ /** The base URL of the server (optional if you're using the same domain) */ baseURL: "http://localhost:3000", }); export const { signIn, signUp, signOut, useSession } = createAuthClient(); ``` ```tsx "use client"; import { signOut, useSession } from "@/lib/auth-client"; import { Button } from "../ui/button"; import { Popover, PopoverContent, PopoverTrigger, } from "@/components/ui/popover"; import { useState } from "react"; import SignInDiscord from "../SignInDiscord"; const NavbarProfile = () => { const [open, setOpen] = useState(false); const { data: session, isPending, ...rest } = useSession(); console.log({ isPending, session, ...rest }); //watch server logs if (isPending) return <div>Pending Auth...</div>; if (!session) return <SignInDiscord />; return ( <Popover open={open} onOpenChange={setOpen}> <PopoverTrigger className="cursor-pointer"> <div className="flex items-center gap-2">{session.user.name}</div> </PopoverTrigger> <PopoverContent className="w-fit"> <Button variant={"destructive"} onClick={async () => { signOut(); setOpen(false); }} > SignOut </Button> </PopoverContent> </Popover> ); }; export default NavbarProfile; ``` ### Current vs. Expected behavior Hooks on client components shouldn't run on the server. Instead, `useSession` runs resulting in: ```js { isPending: false, session: null, error: { status: 0, statusText: '' }, isRefetching: false, refetch: [Function: refetch] } ``` which messes up rendering and produces hydration errors. ### What version of Better Auth are you using? 1.2.7 ### Provide environment information ```bash - OS: Windows - Browser: Chrome - "next": "15.3.1", - "react": "^19.1.0", ``` ### Which area(s) are affected? (Select all that apply) Client ### Auth config (if applicable) ```typescript export const auth = betterAuth({ database: drizzleAdapter(db, { provider: "mysql", schema, }), emailAndPassword: { enabled: true }, socialProviders: { discord: { clientId: process.env.NEXT_PUBLIC_DISCORD_CLIENT_ID!, clientSecret: process.env.DISCORD_CLIENT_SECRET!, }, }, session: { expiresIn: 60 * 60 * 24 * 7, updateAge: 60 * 60 * 24, }, }); ```

GiteaMirror added the locked label 2026-04-15 16:10:35 -05:00

GiteaMirror closed this issue

2026-04-15 16:10:35 -05:00

GiteaMirror commented

2026-04-15 16:10:37 -05:00

@Kinfe123 commented on GitHub (Apr 27, 2025):

if you are next , it can be something related to nextjs runtime arch:

Server Components render exclusively on the server, generating static HTML for faster loads and reduced client-side JavaScript. They’re ideal for non-interactive, data-heavy parts of a page.
Client Components run on both the server (during SSR) and the client (for hydration). Their primary role is to add interactivity (state, effects, event handlers) while still benefiting from server-side rendering for SEO and initial load performance.

so client component can have a possiblitity of running on both environment with a undefinied preset values on server runtimes.
for more - https://github.com/vercel/next.js/discussions/54114

@Kinfe123 commented on GitHub (Apr 27, 2025): if you are next , it can be something related to nextjs runtime arch: Server Components render exclusively on the server, generating static HTML for faster loads and reduced client-side JavaScript. They’re ideal for non-interactive, data-heavy parts of a page. Client Components run on both the server (during SSR) and the client (for hydration). Their primary role is to add interactivity (state, effects, event handlers) while still benefiting from server-side rendering for SEO and initial load performance. so client component can have a possiblitity of running on both environment with a undefinied preset values on server runtimes. for more - https://github.com/vercel/next.js/discussions/54114

GiteaMirror commented

2026-04-15 16:10:37 -05:00

@papsavas commented on GitHub (Apr 28, 2025):

If useSession needs to run during SSR, the preset isPending value must be true (as resolved in #960).

isPending:false & session:null can only mean that there is no session and that this will persist during hydration too.

The nature of this issue might be tougher to deal with since it's a side effect of destructuring. Until then, authClient.useSession() seems to be the solution

@papsavas commented on GitHub (Apr 28, 2025): If `useSession` needs to run during SSR, the preset `isPending` value must be `true` (as resolved in #960). `isPending:false` & `session:null` can only mean that there is no session and that this will persist during hydration too. The nature of this issue might be tougher to deal with since it's a side effect of destructuring. Until then, `authClient.useSession()` seems to be the solution

GiteaMirror commented

2026-04-15 16:10:38 -05:00

@Kinfe123 commented on GitHub (Apr 28, 2025):

No. I'm explaining the reason why you are facing the server log during the render because of the next runtime alowing such convenience on such case as explained on issue

@Kinfe123 commented on GitHub (Apr 28, 2025): No. I'm explaining the reason why you are facing the server log during the render because of the next runtime alowing such convenience on such case as explained on issue

GiteaMirror commented

2026-04-15 16:10:38 -05:00

@Kinfe123 commented on GitHub (Apr 28, 2025):

Other than that . It is already explained the issue you mentioned about the mix of destructuring.

@Kinfe123 commented on GitHub (Apr 28, 2025): Other than that . It is already explained the issue you mentioned about the mix of destructuring.

GiteaMirror commented

2026-04-15 16:10:39 -05:00

@kstratis commented on GitHub (May 4, 2025):

Using the latest next js canary (15.4.0-canary.20 & better-auth v1.2.7), I'm also getting the hydration error even if I do authClient.useSession();.
This must definitely be a regression.

@kstratis commented on GitHub (May 4, 2025): Using the latest next js canary (`15.4.0-canary.20` & `better-auth v1.2.7`), I'm also getting the hydration error even if I do `authClient.useSession();`. This must definitely be a regression.

GiteaMirror commented

2026-04-15 16:10:39 -05:00

@samcxps commented on GitHub (May 9, 2025):

next@15.3.2 and better-auth@1.2.7 and also experiencing hydration issues when using hooks from the auth client. Noticed this only happens when trying to conditionally render different content based on the isPending property

i.e. This causes a hydration error.

  const router = useRouter();
  const session = authClient.useSession();

  if (session.isPending) {
    return (
      <div className="flex h-screen w-screen items-center justify-center">
        <Loader />
      </div>
    );
  }

return (
    <>
      <RedirectToSignIn />
      <SignedIn>
        <AuthenticatedProviders>
          <ErrorBoundary>{children}</ErrorBoundary>
          <PostHogIdentifier />
        </AuthenticatedProviders>
      </SignedIn>
    </>
  );
}

This does not cause a hydration error

  const router = useRouter();
  const session = authClient.useSession();

return (
    <>
      <RedirectToSignIn />
      <SignedIn>
        <AuthenticatedProviders>
          <ErrorBoundary>{children}</ErrorBoundary>
          <PostHogIdentifier />
        </AuthenticatedProviders>
      </SignedIn>
    </>
  );
}

@samcxps commented on GitHub (May 9, 2025): `next@15.3.2` and `better-auth@1.2.7` and also experiencing hydration issues when using hooks from the auth client. Noticed this only happens when trying to conditionally render different content based on the `isPending` property i.e. This causes a hydration error. ```export default function Layout({ children }: PropsWithChildren) { const router = useRouter(); const session = authClient.useSession(); if (session.isPending) { return ( <div className="flex h-screen w-screen items-center justify-center"> <Loader /> </div> ); } return ( <> <RedirectToSignIn /> <SignedIn> <AuthenticatedProviders> <ErrorBoundary>{children}</ErrorBoundary> <PostHogIdentifier /> </AuthenticatedProviders> </SignedIn> </> ); } ``` This does not cause a hydration error ```export default function Layout({ children }: PropsWithChildren) { const router = useRouter(); const session = authClient.useSession(); return ( <> <RedirectToSignIn /> <SignedIn> <AuthenticatedProviders> <ErrorBoundary>{children}</ErrorBoundary> <PostHogIdentifier /> </AuthenticatedProviders> </SignedIn> </> ); } ```

GiteaMirror commented

2026-04-15 16:10:40 -05:00

@asimaranov commented on GitHub (May 14, 2025):

Same one.

  const session = authClient.useSession();

<div
          className={cn(
            'group/rating z-1000 mx-2 flex h-8 items-center rounded-[0.3472vw] px-5',
            !!rating && 'hover:bg-secondary/10 relative',
            !!session.data?.user && 'cursor-pointer'
          )}
          onClick={() => {
            if (!session.data?.user) {
              return;
            }
            rating && setRating(undefined);
          }}
        >

Produces hydration error:

@asimaranov commented on GitHub (May 14, 2025): Same one. ```ts const session = authClient.useSession(); <div className={cn( 'group/rating z-1000 mx-2 flex h-8 items-center rounded-[0.3472vw] px-5', !!rating && 'hover:bg-secondary/10 relative', !!session.data?.user && 'cursor-pointer' )} onClick={() => { if (!session.data?.user) { return; } rating && setRating(undefined); }} > ``` Produces hydration error: <img width="1075" alt="Image" src="https://github.com/user-attachments/assets/c0633981-9dfa-4cf3-9270-c02fa97317d9" />

GiteaMirror commented

2026-04-15 16:10:41 -05:00

@yerzham commented on GitHub (May 23, 2025):

I think https://github.com/better-auth/better-auth/pull/976 did not solve the hydration problem in the first place.

Could it be that the useSession state (which is using nanostore atom under the hood) is initialized in the server with default isPending: true, then it gets the session on the server leading to isPending: false, but the client still continues to initialize on the browser with isPending:true, even though server sent a rendered response with isPending: false leading to a hydration error.

Then there are two ways to fix the issue:

Server must always render with isPending: true no matter if session is obtained via nanostore atom and keep the client initialize with isPending: true.
Server must hydrate the isPending:true in server nanostore atom to the client's broswer nanostore atom

First one is probably easiest way to fix this. I am not fluent with nanostore atom, so I hope someone can check this.

Edit:
isPending: true is not the only thing to sync between server and client on hydration, session.data, session.error, session.refetch and others should all be checked/tested too.

@yerzham commented on GitHub (May 23, 2025): I think https://github.com/better-auth/better-auth/pull/976 did not solve the hydration problem in the first place. Could it be that the useSession state (which is using nanostore atom under the hood) is initialized in the server with default `isPending: true`, then it gets the session on the server leading to `isPending: false`, but the client still continues to initialize on the browser with `isPending:true`, even though server sent a rendered response with `isPending: false` leading to a hydration error. Then there are two ways to fix the issue: - Server must always render with `isPending: true` no matter if session is obtained via nanostore atom and keep the client initialize with `isPending: true`. - Server must hydrate the `isPending:true` in server nanostore atom to the client's broswer nanostore atom First one is probably easiest way to fix this. I am not fluent with nanostore atom, so I hope someone can check this. Edit: `isPending: true` is not the only thing to sync between server and client on hydration, `session.data`, `session.error`, `session.refetch` and others should all be checked/tested too.

Sign in to join this conversation.

Branches Tags

2026-05-22/chore/adopt-agents-md

2026-05-22/refactor/string-case-utils

dependabot/npm_and_yarn/uuid-14.0.0

dependabot/npm_and_yarn/turbo-2.9.14

changeset-release/main

main

2026-05-14/fix/passkey-verify-error-and-claim

dependabot/npm_and_yarn/samlify-2.13.0

dependabot/npm_and_yarn/ws-8.20.1

changeset-release/next

dependabot/npm_and_yarn/demo/electron/demo-minor-patch-519ef7475f

dependabot/github_actions/github-actions-98f3470200

client-assertions-main

2026-05-15/ci/fix-sqlite-abi-mismatch

2026-05-15/fix/organization-team-add-cascade

2026-05-15/fix/parse-set-cookie-value-validation

2026-05-13/feat/captcha-wildcard-endpoints

2026-05-13/ci/stabilize-docker-startup

fix/i18n-before-hook-translation

fix/disable-migration-generate

2026-05-07/fix/admin-set-password-upsert

2026-05-10/fix/cookie-drain-order

2026-05-10/feat/hooks-finally

2026-05-09/fix/cookie-drain-order

2026-05-09/feat/hooks-finally

2026-05-08/feat/register-before-send

fix/stripe/subscription-data-merge

2026-05-01/chore/pnpm-v11-harden

chore/pnpm-v11

2026-04-29/feat/google-include-granted-scopes

2026-04-29/fix/oauth-account-scope-semantics

2026-04-27/fix/nextcookies-idempotent-writes

2026-04-26/fix/harden-proxy-host-validation

2026-04-26/refactor/stripe-callback-signature-cleanup

2026-04-26/fix/stripe-subscription-callback-timing

2026-04-11/fix/sveltekit-app-modules

feat/open-api-zod-contract

feat/oauth-provider-backchannel-logout-next

feat/oauth-idp-initiated-bounce

refactor/sign-in-challenges

2026-04-21/fix/oauth-rfc-input-validation

fix/release-notes-new-packages

fix/two-factor-identity-guard

fix/resource

feat/emailpassword-authorize

2026-04-12/security/dynamic-baseurl-proxy-trust-default

feat/oauth-provider-at-hash-v2

fix/release-grep-fallback

claude/address-review-comments-JhFLr

claude/slack-update-stripe-docs-consistency-8Sc0w

feat/async-auth

fix/two-factor-totp-verified-enrollment

feat/plugin-ui

codex/blog-1-6-release-post

2026-04-06/fix/type-any-guards

2026-04-05/chore/downgrade-better-call

2026-04-04/ci/skip-vercel-fork-prs

2026-03-28/ci/add-autofix-ci

chore/release-preview-script

himself65/2026/02/19/role

2026-03-24/fix/update-user-info-on-link

2026-03-20/docs/improve-website

2026-03-20/fix/anonymous-onlinkaccount-expo

2026-02-17/fix/anonymous-link-state

fix/8607-saml-inresponseto

fix/8549-scim-patch-noop

v1.4.x

refactor/migration-snapshot-tests

worktree-magic-link-additional-data

chore/migrate-build-to-rollup

worktree-fix-dynamic-baseurl-8447

2026-03-06/chore/public-api-check

fix/close-8156-regression-test

fix/secondary-storage-json-error-handling

himself65/verification-namespace

cursor/issue-8307-validation-79a3

himself65/2026/01/30/error-mdx

v1.4.x-staging

fix/email-otp-user

fix/restrict-full-organization-access-roles

himself65/2026/02/12/count

himself65/2026/02/04/define-plugin

2026-02-04/feat/add-pluralize

cursor/better-auth-js-integration-ec21

cursor/expo-state-mismatch-394c

2026-02-01/fix/org-update-role-sync-members

cursor/issue-7607-investigation-e146

cursor/email-generation-helper-0ff6

himself65/2026/01/21/avoid-spread-operator

himself65/2026/01/14/cli

claude/slack-add-docs-pr-NMvgO

claude/slack-add-advanced-useplural-WHKYL

feat/hooks-pos

feat/2fa-phone

feat/2fa

fix/rotation

fix/username-check

v1.3.x

refactor/organization

feat/multiple-client-ids-social-providers

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/better-auth#17833