feat: make generateSessionToken awaitable

2026-05-01 10:55:20 +00:00 · 2023-01-28 13:16:55 +01:00
parent 0cbeb4055e
commit c0c3a97961
2 changed files with 7 additions and 7 deletions
--- a/packages/next-auth/src/core/lib/callback-handler.ts
+++ b/packages/next-auth/src/core/lib/callback-handler.ts
@@ -113,7 +113,7 @@ export default async function callbackHandler(params: {
    session = useJwtSession
      ? {}
      : await createSession({
-          sessionToken: generateSessionToken(),
+          sessionToken: await generateSessionToken(),
          userId: user.id,
          expires: fromDate(options.session.maxAge),
        })
@@ -143,7 +143,7 @@ export default async function callbackHandler(params: {
      session = useJwtSession
        ? {}
        : await createSession({
-            sessionToken: generateSessionToken(),
+            sessionToken: await generateSessionToken(),
            userId: userByAccount.id,
            expires: fromDate(options.session.maxAge),
          })
@@ -181,11 +181,11 @@ export default async function callbackHandler(params: {
        ? await getUserByEmail(profile.email)
        : null
      if (userByEmail) {
-        const provider = options.provider as OAuthConfig<any>;
+        const provider = options.provider as OAuthConfig<any>
        if (provider?.allowDangerousEmailAccountLinking) {
-          // If you trust the oauth provider to correctly verify email addresses, you can opt-in to 
+          // If you trust the oauth provider to correctly verify email addresses, you can opt-in to
          // account linking even when the user is not signed-in.
-          user = userByEmail;
+          user = userByEmail
        } else {
          // We end up here when we don't have an account with the same [provider].id *BUT*
          // we do already have an account with the same email address as the one in the
@@ -216,7 +216,7 @@ export default async function callbackHandler(params: {
      session = useJwtSession
        ? {}
        : await createSession({
-            sessionToken: generateSessionToken(),
+            sessionToken: await generateSessionToken(),
            userId: user.id,
            expires: fromDate(options.session.maxAge),
          })
--- a/packages/next-auth/src/core/types.ts
+++ b/packages/next-auth/src/core/types.ts
@@ -465,7 +465,7 @@ export interface SessionOptions {
   * However, you can specify your own custom string (such as CUID) to be used.
   * @default `randomUUID` or `randomBytes.toHex` depending on the Node.js version
   */
-  generateSessionToken: () => string
+  generateSessionToken: () => Awaitable<string>
 }

 export interface DefaultUser {