chore(release): bump package version(s) [skip ci]

Co-authored-by: Balázs Orbán <info@balazsorban.com>

.github/ISSUE_TEMPLATE/1_bug_framework.yml

@@ -11,7 +11,7 @@ body:
 
         ### Important :exclamation:
 
-        _Providing incorrect/insufficient information or skipping steps to reproduce the issue may result in closing the issue or converting to a discussion without further explanation._
+        _Providing incorrect/insufficient information or skipping steps to reproduce the issue will result in closing the issue and/or converting to a discussion without further explanation._
 
         If you have a generic question specific to your project, it is best asked in Discussions under the [Questions category](https://github.com/nextauthjs/next-auth/discussions/new?category=Questions)
   # Let's wait with this until adoption in other frameworks.

.github/ISSUE_TEMPLATE/2_bug_provider.yml

@@ -31,6 +31,7 @@ body:
         - "Authentik"
         - "Azure Active Directory"
         - "Azure Active Directory B2C"
+        - "Azure DevOps"
         - "Battlenet"
         - "Beyond Identity"
         - "Box"

.github/ISSUE_TEMPLATE/3_bug_adapter.yml

@@ -24,7 +24,6 @@ body:
         - "@auth/dgraph-adapter"
         - "@auth/drizzle-adapter"
         - "@auth/dynamodb-adapter"
-        - "@auth/drizzle-adapter"
         - "@auth/fauna-adapter"
         - "@auth/firebase-adapter"
         - "@auth/kysely-adapter"

apps/dev/sveltekit/package.json

@@ -15,7 +15,7 @@
     "@sveltejs/kit": "next",
     "svelte": "3.55.0",
     "svelte-check": "2.10.2",
-    "typescript": "4.9.4",
+    "typescript": "5.2.2",
     "vite": "4.0.5"
   },
   "dependencies": {

apps/examples/nextjs/app/api/auth/[...nextauth]/route.ts

@@ -0,0 +1,5 @@
+import NextAuth from "next-auth/next"
+import { config } from "auth"
+
+const handler = NextAuth(config)
+export { handler as GET, handler as POST }

apps/examples/nextjs/auth.ts

@@ -0,0 +1,294 @@
+import type { GetServerSidePropsContext, NextApiRequest, NextApiResponse } from "next"
+import type { NextAuthOptions as NextAuthConfig } from "next-auth"
+import { getServerSession } from "next-auth"
+
+import Apple from "next-auth/providers/apple"
+import Atlassian from "next-auth/providers/atlassian"
+import Auth0 from "next-auth/providers/auth0"
+import Authentik from "next-auth/providers/authentik"
+import AzureAD from "next-auth/providers/azure-ad"
+import AzureB2C from "next-auth/providers/azure-ad-b2c"
+import Battlenet from "next-auth/providers/battlenet"
+import Box from "next-auth/providers/box"
+import BoxyHQSAML from "next-auth/providers/boxyhq-saml"
+import Bungie from "next-auth/providers/bungie"
+import Cognito from "next-auth/providers/cognito"
+import Coinbase from "next-auth/providers/coinbase"
+import Discord from "next-auth/providers/discord"
+import Dropbox from "next-auth/providers/dropbox"
+import DuendeIDS6 from "next-auth/providers/duende-identity-server6"
+import Eveonline from "next-auth/providers/eveonline"
+import Facebook from "next-auth/providers/facebook"
+import Faceit from "next-auth/providers/faceit"
+import FortyTwoSchool from "next-auth/providers/42-school"
+import Foursquare from "next-auth/providers/foursquare"
+import Freshbooks from "next-auth/providers/freshbooks"
+import Fusionauth from "next-auth/providers/fusionauth"
+import GitHub from "next-auth/providers/github"
+import Gitlab from "next-auth/providers/gitlab"
+import Google from "next-auth/providers/google"
+import Hubspot from "next-auth/providers/hubspot"
+import Instagram from "next-auth/providers/instagram"
+import Kakao from "next-auth/providers/kakao"
+import Keycloak from "next-auth/providers/keycloak"
+import Line from "next-auth/providers/line"
+import LinkedIn from "next-auth/providers/linkedin"
+import Mailchimp from "next-auth/providers/mailchimp"
+import Mailru from "next-auth/providers/mailru"
+import Medium from "next-auth/providers/medium"
+import Naver from "next-auth/providers/naver"
+import Netlify from "next-auth/providers/netlify"
+import Okta from "next-auth/providers/okta"
+import Onelogin from "next-auth/providers/onelogin"
+import Osso from "next-auth/providers/osso"
+import Osu from "next-auth/providers/osu"
+import Passage from "next-auth/providers/passage"
+import Patreon from "next-auth/providers/patreon"
+import Pinterest from "next-auth/providers/pinterest"
+import Pipedrive from "next-auth/providers/pipedrive"
+import Reddit from "next-auth/providers/reddit"
+import Salesforce from "next-auth/providers/salesforce"
+import Slack from "next-auth/providers/slack"
+import Spotify from "next-auth/providers/spotify"
+import Strava from "next-auth/providers/strava"
+import Todoist from "next-auth/providers/todoist"
+import Trakt from "next-auth/providers/trakt"
+import Twitch from "next-auth/providers/twitch"
+import Twitter from "next-auth/providers/twitter"
+import UnitedEffects from "next-auth/providers/united-effects"
+import Vk from "next-auth/providers/vk"
+import Wikimedia from "next-auth/providers/wikimedia"
+import Wordpress from "next-auth/providers/wordpress"
+import WorkOS from "next-auth/providers/workos"
+import Yandex from "next-auth/providers/yandex"
+import Zitadel from "next-auth/providers/zitadel"
+import Zoho from "next-auth/providers/zoho"
+import Zoom from "next-auth/providers/zoom"
+
+// Read more at: https://next-auth.js.org/getting-started/typescript#module-augmentation
+declare module "next-auth/jwt" {
+  interface JWT {
+    /** The user's role. */
+    userRole?: "admin"
+  }
+}
+
+export const config = {
+  // https://next-auth.js.org/configuration/providers/oauth
+  providers: [
+    Apple({ clientId: process.env.AUTH_APPLE_ID, clientSecret: process.env.AUTH_APPLE_SECRET }),
+    Atlassian({ clientId: process.env.AUTH_ATLASSIAN_ID, clientSecret: process.env.AUTH_ATLASSIAN_SECRET }),
+    Auth0({ clientId: process.env.AUTH_AUTH0_ID, clientSecret: process.env.AUTH_AUTH0_SECRET, issuer: process.env.AUTH_AUTH0_ISSUER }),
+    Authentik({ clientId: process.env.AUTH_AUTHENTIK_ID, clientSecret: process.env.AUTH_AUTHENTIK_SECRET }),
+    AzureAD({ clientId: process.env.AUTH_AZUREAD_ID, clientSecret: process.env.AUTH_AZUREAD_SECRET }),
+    AzureB2C({ clientId: process.env.AUTH_AZUREB2C_ID, clientSecret: process.env.AUTH_AZUREB2C_SECRET }),
+    Battlenet({ clientId: process.env.AUTH_BN_ID, clientSecret: process.env.AUTH_BN_SECRET, issuer: process.env.AUTH_BN_ISSUER }),
+    Box({ clientId: process.env.AUTH_BOX_ID, clientSecret: process.env.AUTH_BOX_SECRET }),
+    BoxyHQSAML({ clientId: process.env.AUTH_BOXYHQ_ID, clientSecret: process.env.AUTH_BOXYHQ_SECRET, issuer: process.env.AUTH_BOXYHQ_ISSUER }),
+    Bungie({ clientId: process.env.AUTH_BUNGIE_ID, clientSecret: process.env.AUTH_BUNGIE_SECRET }),
+    Cognito({ clientId: process.env.AUTH_COGNITO_ID, clientSecret: process.env.AUTH_COGNITO_SECRET }),
+    Coinbase({ clientId: process.env.AUTH_COINBASE_ID, clientSecret: process.env.AUTH_COINBASE_SECRET }),
+    Discord({ clientId: process.env.AUTH_DISCORD_ID, clientSecret: process.env.AUTH_DISCORD_SECRET }),
+    Dropbox({ clientId: process.env.AUTH_DROPBOX_ID, clientSecret: process.env.AUTH_DROPBOX_SECRET }),
+    DuendeIDS6({ clientId: process.env.AUTH_DUENDEIDS6_ID, clientSecret: process.env.AUTH_DUENDEIDS6_SECRET }),
+    Eveonline({ clientId: process.env.AUTH_EVEONLINE_ID, clientSecret: process.env.AUTH_EVEONLINE_SECRET }),
+    Facebook({ clientId: process.env.AUTH_FACEBOOK_ID, clientSecret: process.env.AUTH_FACEBOOK_SECRET }),
+    Faceit({ clientId: process.env.AUTH_FACEIT_ID, clientSecret: process.env.AUTH_FACEIT_SECRET }),
+    FortyTwoSchool({ clientId: process.env.AUTH_FORTYTWOSCHOOL_ID, clientSecret: process.env.AUTH_FORTYTWOSCHOOL_SECRET }),
+    Foursquare({ clientId: process.env.AUTH_FOURSQUARE_ID, clientSecret: process.env.AUTH_FOURSQUARE_SECRET }),
+    Freshbooks({ clientId: process.env.AUTH_FRESHBOOKS_ID, clientSecret: process.env.AUTH_FRESHBOOKS_SECRET }),
+    Fusionauth({ clientId: process.env.AUTH_FUSIONAUTH_ID, clientSecret: process.env.AUTH_FUSIONAUTH_SECRET }),
+    GitHub({ clientId: process.env.AUTH_GITHUB_ID, clientSecret: process.env.AUTH_GITHUB_SECRET }),
+    Gitlab({ clientId: process.env.AUTH_GITLAB_ID, clientSecret: process.env.AUTH_GITLAB_SECRET }),
+    Google({ clientId: process.env.AUTH_GOOGLE_ID, clientSecret: process.env.AUTH_GOOGLE_SECRET }),
+    Hubspot({ clientId: process.env.AUTH_HUBSPOT_ID, clientSecret: process.env.AUTH_HUBSPOT_SECRET }),
+    Instagram({ clientId: process.env.AUTH_INSTAGRAM_ID, clientSecret: process.env.AUTH_INSTAGRAM_SECRET }),
+    Kakao({ clientId: process.env.AUTH_KAKAO_ID, clientSecret: process.env.AUTH_KAKAO_SECRET }),
+    Keycloak({ clientId: process.env.AUTH_KEYCLOAK_ID, clientSecret: process.env.AUTH_KEYCLOAK_SECRET }),
+    Line({ clientId: process.env.AUTH_LINE_ID, clientSecret: process.env.AUTH_LINE_SECRET }),
+    LinkedIn({ clientId: process.env.AUTH_LINKEDIN_ID, clientSecret: process.env.AUTH_LINKEDIN_SECRET }),
+    Mailchimp({ clientId: process.env.AUTH_MAILCHIMP_ID, clientSecret: process.env.AUTH_MAILCHIMP_SECRET }),
+    Mailru({ clientId: process.env.AUTH_MAILRU_ID, clientSecret: process.env.AUTH_MAILRU_SECRET }),
+    Medium({ clientId: process.env.AUTH_MEDIUM_ID, clientSecret: process.env.AUTH_MEDIUM_SECRET }),
+    Naver({ clientId: process.env.AUTH_NAVER_ID, clientSecret: process.env.AUTH_NAVER_SECRET }),
+    Netlify({ clientId: process.env.AUTH_NETLIFY_ID, clientSecret: process.env.AUTH_NETLIFY_SECRET }),
+    Okta({ clientId: process.env.AUTH_OKTA_ID, clientSecret: process.env.AUTH_OKTA_SECRET }),
+    Onelogin({ clientId: process.env.AUTH_ONELOGIN_ID, clientSecret: process.env.AUTH_ONELOGIN_SECRET }),
+    Osso({ clientId: process.env.AUTH_OSSO_ID, clientSecret: process.env.AUTH_OSSO_SECRET, issuer: process.env.AUTH_OSSO_ISSUER }),
+    Osu({ clientId: process.env.AUTH_OSU_ID, clientSecret: process.env.AUTH_OSU_SECRET }),
+    Passage({ clientId: process.env.AUTH_PASSAGE_ID, clientSecret: process.env.AUTH_PASSAGE_SECRET, issuer: process.env.AUTH_PASSAGE_ISSUER }),
+    Patreon({ clientId: process.env.AUTH_PATREON_ID, clientSecret: process.env.AUTH_PATREON_SECRET }),
+    Pinterest({ clientId: process.env.AUTH_PINTEREST_ID, clientSecret: process.env.AUTH_PINTEREST_SECRET }),
+    Pipedrive({ clientId: process.env.AUTH_PIPEDRIVE_ID, clientSecret: process.env.AUTH_PIPEDRIVE_SECRET }),
+    Reddit({ clientId: process.env.AUTH_REDDIT_ID, clientSecret: process.env.AUTH_REDDIT_SECRET }),
+    Salesforce({ clientId: process.env.AUTH_SALESFORCE_ID, clientSecret: process.env.AUTH_SALESFORCE_SECRET }),
+    Slack({ clientId: process.env.AUTH_SLACK_ID, clientSecret: process.env.AUTH_SLACK_SECRET }),
+    Spotify({ clientId: process.env.AUTH_SPOTIFY_ID, clientSecret: process.env.AUTH_SPOTIFY_SECRET }),
+    Strava({ clientId: process.env.AUTH_STRAVA_ID, clientSecret: process.env.AUTH_STRAVA_SECRET }),
+    Todoist({ clientId: process.env.AUTH_TODOIST_ID, clientSecret: process.env.AUTH_TODOIST_SECRET }),
+    Trakt({ clientId: process.env.AUTH_TRAKT_ID, clientSecret: process.env.AUTH_TRAKT_SECRET }),
+    Twitch({ clientId: process.env.AUTH_TWITCH_ID, clientSecret: process.env.AUTH_TWITCH_SECRET }),
+    Twitter({ clientId: process.env.AUTH_TWITTER_ID, clientSecret: process.env.AUTH_TWITTER_SECRET, version: "2.0" }),
+    UnitedEffects({ clientId: process.env.AUTH_UE_ID, clientSecret: process.env.AUTH_UE_SECRET, issuer: process.env.AUTH_UE_ISSUER }),
+    Vk({ clientId: process.env.AUTH_VK_ID, clientSecret: process.env.AUTH_VK_SECRET }),
+    Wikimedia({ clientId: process.env.AUTH_WIKIMEDIA_ID, clientSecret: process.env.AUTH_WIKIMEDIA_SECRET }),
+    Wordpress({ clientId: process.env.AUTH_WORDPRESS_ID, clientSecret: process.env.AUTH_WORDPRESS_SECRET }),
+    WorkOS({ clientId: process.env.AUTH_WORKOS_ID, clientSecret: process.env.AUTH_WORKOS_SECRET }),
+    Yandex({ clientId: process.env.AUTH_YANDEX_ID, clientSecret: process.env.AUTH_YANDEX_SECRET }),
+    Zitadel({ clientId: process.env.AUTH_ZITADEL_ID, clientSecret: process.env.AUTH_ZITADEL_SECRET }),
+    Zoho({ clientId: process.env.AUTH_ZOHO_ID, clientSecret: process.env.AUTH_ZOHO_SECRET }),
+    Zoom({ clientId: process.env.AUTH_ZOOM_ID, clientSecret: process.env.AUTH_ZOOM_SECRET }),
+  ],
+  callbacks: {
+    async jwt({ token }) {
+      token.userRole = "admin"
+      return token
+    },
+  },
+} satisfies NextAuthConfig
+
+// Helper function to get session without passing config every time
+// https://next-auth.js.org/configuration/nextjs#getserversession
+export function auth(...args: [GetServerSidePropsContext["req"], GetServerSidePropsContext["res"]] | [NextApiRequest, NextApiResponse] | []) {
+  return getServerSession(...args, config)
+}
+
+// We recommend doing your own environment variable validation
+declare global {
+  namespace NodeJS {
+    export interface ProcessEnv {
+      NEXTAUTH_SECRET: string
+
+      AUTH_APPLE_ID: string
+      AUTH_APPLE_SECRET: string
+      AUTH_ATLASSIAN_ID: string
+      AUTH_ATLASSIAN_SECRET: string
+      AUTH_AUTH0_ID: string
+      AUTH_AUTH0_ISSUER: string
+      AUTH_AUTH0_SECRET: string
+      AUTH_AUTHENTIK_ID: string
+      AUTH_AUTHENTIK_SECRET: string
+      AUTH_AZUREAD_ID: string
+      AUTH_AZUREAD_SECRET: string
+      AUTH_AZUREB2C_ID: string
+      AUTH_AZUREB2C_SECRET: string
+      AUTH_BN_ID: string
+      AUTH_BN_ISSUER: any
+      AUTH_BN_SECRET: string
+      AUTH_BOX_ID: string
+      AUTH_BOX_SECRET: string
+      AUTH_BOXYHQ_ID: string
+      AUTH_BOXYHQ_ISSUER: string
+      AUTH_BOXYHQ_SECRET: string
+      AUTH_BUNGIE_ID: string
+      AUTH_BUNGIE_SECRET: string
+      AUTH_COGNITO_ID: string
+      AUTH_COGNITO_SECRET: string
+      AUTH_COINBASE_ID: string
+      AUTH_COINBASE_SECRET: string
+      AUTH_DISCORD_ID: string
+      AUTH_DISCORD_SECRET: string
+      AUTH_DROPBOX_ID: string
+      AUTH_DROPBOX_SECRET: string
+      AUTH_DUENDEIDS6_ID: string
+      AUTH_DUENDEIDS6_SECRET: string
+      AUTH_EVEONLINE_ID: string
+      AUTH_EVEONLINE_SECRET: string
+      AUTH_FACEBOOK_ID: string
+      AUTH_FACEBOOK_SECRET: string
+      AUTH_FACEIT_ID: string
+      AUTH_FACEIT_SECRET: string
+      AUTH_FORTYTWOSCHOOL_ID: string
+      AUTH_FORTYTWOSCHOOL_SECRET: string
+      AUTH_FOURSQUARE_ID: string
+      AUTH_FOURSQUARE_SECRET: string
+      AUTH_FRESHBOOKS_ID: string
+      AUTH_FRESHBOOKS_SECRET: string
+      AUTH_FUSIONAUTH_ID: string
+      AUTH_FUSIONAUTH_SECRET: string
+      AUTH_GITHUB_ID: string
+      AUTH_GITHUB_SECRET: string
+      AUTH_GITLAB_ID: string
+      AUTH_GITLAB_SECRET: string
+      AUTH_GOOGLE_ID: string
+      AUTH_GOOGLE_SECRET: string
+      AUTH_HUBSPOT_ID: string
+      AUTH_HUBSPOT_SECRET: string
+      AUTH_INSTAGRAM_ID: string
+      AUTH_INSTAGRAM_SECRET: string
+      AUTH_KAKAO_ID: string
+      AUTH_KAKAO_SECRET: string
+      AUTH_KEYCLOAK_ID: string
+      AUTH_KEYCLOAK_SECRET: string
+      AUTH_LINE_ID: string
+      AUTH_LINE_SECRET: string
+      AUTH_LINKEDIN_ID: string
+      AUTH_LINKEDIN_SECRET: string
+      AUTH_MAILCHIMP_ID: string
+      AUTH_MAILCHIMP_SECRET: string
+      AUTH_MAILRU_ID: string
+      AUTH_MAILRU_SECRET: string
+      AUTH_MEDIUM_ID: string
+      AUTH_MEDIUM_SECRET: string
+      AUTH_NAVER_ID: string
+      AUTH_NAVER_SECRET: string
+      AUTH_NETLIFY_ID: string
+      AUTH_NETLIFY_SECRET: string
+      AUTH_OKTA_ID: string
+      AUTH_OKTA_SECRET: string
+      AUTH_ONELOGIN_ID: string
+      AUTH_ONELOGIN_SECRET: string
+      AUTH_OSSO_ID: string
+      AUTH_OSSO_ISSUER: string
+      AUTH_OSSO_SECRET: string
+      AUTH_OSU_ID: string
+      AUTH_OSU_SECRET: string
+      AUTH_PASSAGE_ID: string
+      AUTH_PASSAGE_ISSUER: string
+      AUTH_PASSAGE_SECRET: string
+      AUTH_PATREON_ID: string
+      AUTH_PATREON_SECRET: string
+      AUTH_PINTEREST_ID: string
+      AUTH_PINTEREST_SECRET: string
+      AUTH_PIPEDRIVE_ID: string
+      AUTH_PIPEDRIVE_SECRET: string
+      AUTH_REDDIT_ID: string
+      AUTH_REDDIT_SECRET: string
+      AUTH_SALESFORCE_ID: string
+      AUTH_SALESFORCE_SECRET: string
+      AUTH_SLACK_ID: string
+      AUTH_SLACK_SECRET: string
+      AUTH_SPOTIFY_ID: string
+      AUTH_SPOTIFY_SECRET: string
+      AUTH_STRAVA_ID: string
+      AUTH_STRAVA_SECRET: string
+      AUTH_TODOIST_ID: string
+      AUTH_TODOIST_SECRET: string
+      AUTH_TRAKT_ID: string
+      AUTH_TRAKT_SECRET: string
+      AUTH_TWITCH_ID: string
+      AUTH_TWITCH_SECRET: string
+      AUTH_TWITTER_ID: string
+      AUTH_TWITTER_SECRET: string
+      AUTH_UE_ID: string
+      AUTH_UE_ISSUER: string
+      AUTH_UE_SECRET: string
+      AUTH_VK_ID: string
+      AUTH_VK_SECRET: string
+      AUTH_WIKIMEDIA_ID: string
+      AUTH_WIKIMEDIA_SECRET: string
+      AUTH_WORDPRESS_ID: string
+      AUTH_WORDPRESS_SECRET: string
+      AUTH_WORKOS_ID: string
+      AUTH_WORKOS_SECRET: string
+      AUTH_YANDEX_ID: string
+      AUTH_YANDEX_SECRET: string
+      AUTH_ZITADEL_ID: string
+      AUTH_ZITADEL_SECRET: string
+      AUTH_ZOHO_ID: string
+      AUTH_ZOHO_SECRET: string
+      AUTH_ZOOM_ID: string
+      AUTH_ZOOM_SECRET: string
+    }
+  }
+}

apps/examples/nextjs/next-auth.d.ts

@@ -1,10 +0,0 @@
-import "next-auth/jwt"
-
-// Read more at: https://next-auth.js.org/getting-started/typescript#module-augmentation
-
-declare module "next-auth/jwt" {
-  interface JWT {
-    /** The user's role. */
-    userRole?: "admin"
-  }
-}

apps/examples/nextjs/package.json

@@ -26,6 +26,6 @@
   "devDependencies": {
     "@types/node": "^18.16.2",
     "@types/react": "^18.2.0",
-    "typescript": "^5.0.4"
+    "typescript": "5.2.2"
   }
 }

apps/examples/nextjs/pages/api/auth/[...nextauth].ts

@@ -1,44 +0,0 @@
-import NextAuth, { NextAuthOptions } from "next-auth"
-import GoogleProvider from "next-auth/providers/google"
-import FacebookProvider from "next-auth/providers/facebook"
-import GithubProvider from "next-auth/providers/github"
-import TwitterProvider from "next-auth/providers/twitter"
-import Auth0Provider from "next-auth/providers/auth0"
-
-// For more information on each option (and a full list of options) go to
-// https://next-auth.js.org/configuration/options
-export const authOptions: NextAuthOptions = {
-  // https://next-auth.js.org/configuration/providers/oauth
-  providers: [
-    Auth0Provider({
-      clientId: process.env.AUTH0_ID,
-      clientSecret: process.env.AUTH0_SECRET,
-      issuer: process.env.AUTH0_ISSUER,
-    }),
-    FacebookProvider({
-      clientId: process.env.FACEBOOK_ID,
-      clientSecret: process.env.FACEBOOK_SECRET,
-    }),
-    GithubProvider({
-      clientId: process.env.GITHUB_ID,
-      clientSecret: process.env.GITHUB_SECRET,
-    }),
-    GoogleProvider({
-      clientId: process.env.GOOGLE_ID,
-      clientSecret: process.env.GOOGLE_SECRET,
-    }),
-    TwitterProvider({
-      clientId: process.env.TWITTER_ID,
-      clientSecret: process.env.TWITTER_SECRET,
-      version: "2.0",
-    }),
-  ],
-  callbacks: {
-    async jwt({ token }) {
-      token.userRole = "admin"
-      return token
-    },
-  },
-}
-
-export default NextAuth(authOptions)

apps/examples/nextjs/pages/api/examples/protected.ts

@@ -1,14 +1,13 @@
 // This is an example of to protect an API route
-import { getServerSession } from "next-auth/next"
-import { authOptions } from "../auth/[...nextauth]"
 
+import { auth } from "auth"
 import type { NextApiRequest, NextApiResponse } from "next"
 
 export default async function handler(
   req: NextApiRequest,
   res: NextApiResponse
 ) {
-  const session = await getServerSession(req, res, authOptions)
+  const session = await auth(req, res)
 
   if (session) {
     return res.send({

apps/examples/nextjs/pages/api/examples/session.ts

@@ -1,13 +1,12 @@
 // This is an example of how to access a session from an API route
-import { getServerSession } from "next-auth"
-import { authOptions } from "../auth/[...nextauth]"
 
+import { auth } from "auth"
 import type { NextApiRequest, NextApiResponse } from "next"
 
 export default async function handler(
   req: NextApiRequest,
   res: NextApiResponse
 ) {
-  const session = await getServerSession(req, res, authOptions)
+  const session = await auth(req, res)
   res.send(JSON.stringify(session, null, 2))
 }

apps/examples/nextjs/pages/server.tsx

@@ -1,5 +1,4 @@
-import { getServerSession } from "next-auth/next"
-import { authOptions } from "./api/auth/[...nextauth]"
+import { auth } from "auth"
 import Layout from "../components/layout"
 
 import type { GetServerSidePropsContext } from "next"
@@ -36,9 +35,5 @@ export default function ServerSidePage() {
 
 // Export the `session` prop to use sessions with Server Side Rendering
 export async function getServerSideProps(context: GetServerSidePropsContext) {
-  return {
-    props: {
-      session: await getServerSession(context.req, context.res, authOptions),
-    },
-  }
+  return { props: { session: await auth(context.req, context.res) } }
 }

apps/examples/nextjs/process.d.ts

@@ -1,18 +0,0 @@
-declare namespace NodeJS {
-  export interface ProcessEnv {
-    NEXTAUTH_URL: string
-    NEXTAUTH_SECRET: string
-    GITHUB_ID: string
-    GITHUB_SECRET: string
-    FACEBOOK_ID: string
-    FACEBOOK_SECRET: string
-    TWITTER_ID: string
-    TWITTER_SECRET: string
-    GOOGLE_ID: string
-    GOOGLE_SECRET: string
-    AUTH0_ID: string
-    AUTH0_SECRET: string
-    DESCOPE_ID: string
-    DESCOPE_SECRET: string
-  }
-}

apps/examples/nextjs/tsconfig.json

@@ -1,7 +1,11 @@
 {
   "compilerOptions": {
     "target": "es5",
-    "lib": ["dom", "dom.iterable", "esnext"],
+    "lib": [
+      "dom",
+      "dom.iterable",
+      "esnext"
+    ],
     "allowJs": true,
     "skipLibCheck": true,
     "strict": true,
@@ -13,14 +17,22 @@
     "resolveJsonModule": true,
     "isolatedModules": true,
     "jsx": "preserve",
-    "incremental": true
+    "incremental": true,
+    "baseUrl": ".",
+    "plugins": [
+      {
+        "name": "next"
+      }
+    ]
   },
   "include": [
     "process.d.ts",
     "next-env.d.ts",
-    "next-auth.d.ts",
     "**/*.ts",
-    "**/*.tsx"
+    "**/*.tsx",
+    ".next/types/**/*.ts"
   ],
-  "exclude": ["node_modules"]
+  "exclude": [
+    "node_modules"
+  ]
 }

apps/examples/solid-start/package.json

@@ -13,7 +13,7 @@
     "solid-start-node": "^0.2.9",
     "solid-start-vercel": "^0.2.9",
     "tailwindcss": "^3.2.4",
-    "typescript": "^4.8.3",
+    "typescript": "5.2.2",
     "vite": "^3.1.0"
   },
   "dependencies": {

apps/examples/sveltekit/package.json

@@ -18,7 +18,7 @@
     "@sveltejs/kit": "next",
     "svelte": "3.55.0",
     "svelte-check": "2.10.2",
-    "typescript": "4.9.4",
+    "typescript": "5.2.2",
     "vite": "4.0.1"
   },
   "dependencies": {

docs/docs/getting-started/credentials-tutorial.mdx

@@ -2,6 +2,9 @@
 title: Credentials authentication
 ---
 
+import Tabs from "@theme/Tabs"
+import TabItem from "@theme/TabItem"
+
 Auth.js is built in a way that is flexible to integrate it with any authentication back-end you or your company may already have.
 
 This library has been designed to handle the user session client-wise, to support multiple authentication methods (OAuth, Email, etc...) so that you're not forced to run your own authentication service.
@@ -16,34 +19,49 @@ The functionality provided for credentials based authentication is intentionally
 
 Integrating the Credentials Provider is as simple as initializing it in the Auth.js configuration file:
 
-```ts title="pages/api/auth/[...nextauth].ts"
-import NextAuth from "next-auth"
-import CredentialsProvider from "next-auth/providers/credentials"
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js" default>
 
-export default NextAuth({
-  providers: [
-    CredentialsProvider({
-      async authorize(credentials) {
-        const authResponse = await fetch("/users/login", {
-          method: "POST",
-          headers: {
-            "Content-Type": "application/json",
-          },
-          body: JSON.stringify(credentials),
-        })
+  ```ts title="pages/api/auth/[...nextauth].ts"
+  import NextAuth from "next-auth"
+  import CredentialsProvider from "next-auth/providers/credentials"
 
-        if (!authResponse.ok) {
-          return null
-        }
+  export default NextAuth({
+    providers: [
+      CredentialsProvider({
+        async authorize(credentials) {
+          const authResponse = await fetch("/users/login", {
+            method: "POST",
+            headers: {
+              "Content-Type": "application/json",
+            },
+            body: JSON.stringify(credentials),
+          })
 
-        const user = await authResponse.json()
+          if (!authResponse.ok) {
+            return null
+          }
 
-        return user
-      },
-    }),
-  ],
-})
-```
+          const user = await authResponse.json()
+
+          return user
+        },
+      }),
+    ],
+  })
+  ```
+
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)">
+    TODO Core
+  </TabItem>
+</Tabs>
 
 :::note
 Check the [Credentials Provider options](/reference/core/providers_credentials) for further customization

docs/docs/getting-started/email-tutorial.mdx

@@ -7,6 +7,8 @@ import startPageImg from "./img/email-tutorial-start.png"
 import checkPageImg from "./img/email-tutorial-check.png"
 import mailboxImg from "./img/email-tutorial-mailbox.png"
 import loggedInImg from "./img/email-tutorial-logged.png"
+import Tabs from "@theme/Tabs"
+import TabItem from "@theme/TabItem"
 
 Aside from authenticating users in Auth.js via [OAuth](/getting-started/oauth-tutorial), you can also enable the option to authenticate them via "magic links". These are links that are sent to the user's email and when clicking on them they'll sign up the user automatically.
 
@@ -64,26 +66,43 @@ Note that we're also specifying from which domain email are going to be sent fro
 
 Nice! We're getting there. Now we need to read supply this values as the configuration for our Email Provider. Open `pages/api/auth/[...nextauth].ts` and do the following:
 
-```ts title="pages/api/auth/[...nextauth].ts"
-import NextAuth from "next-auth"
-import Email from "next-auth/providers/email"
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js" default>
 
-export default NextAuth({
-  providers: [
-    Email({
-      server: {
-        host: process.env.SMTP_HOST,
-        port: Number(process.env.SMTP_PORT),
-        auth: {
-          user: process.env.SMTP_USER,
-          pass: process.env.SMTP_PASSWORD,
+  
+  ```ts title="pages/api/auth/[...nextauth].ts"
+  import NextAuth from "next-auth"
+  import Email from "next-auth/providers/email"
+
+  export default NextAuth({
+    providers: [
+      Email({
+        server: {
+          host: process.env.SMTP_HOST,
+          port: Number(process.env.SMTP_PORT),
+          auth: {
+            user: process.env.SMTP_USER,
+            pass: process.env.SMTP_PASSWORD,
+          },
         },
-      },
-      from: process.env.EMAIL_FROM,
-    }),
-  ],
-})
-```
+        from: process.env.EMAIL_FROM,
+      }),
+    ],
+  })
+  ```
+
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)">
+    TODO Core
+  </TabItem>
+</Tabs>
+
 
 ## 3. Setting up an adapter
 
@@ -139,30 +158,46 @@ export default clientPromise
 
 And now let's reference this new adapter from our Auth.js configuration file:
 
-```diff title="pages/api/auth/[...nextauth].ts"
-import NextAuth from "next-auth"
-import EmailProvider from "next-auth/providers/email"
-+ import { MongoDBAdapter } from "@auth/mongodb-adapter"
-+ import clientPromise from "../../../lib/mongodb/client"
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js" default>
+
+  ```diff title="pages/api/auth/[...nextauth].ts"
+  import NextAuth from "next-auth"
+  import EmailProvider from "next-auth/providers/email"
+  + import { MongoDBAdapter } from "@auth/mongodb-adapter"
+  + import clientPromise from "../../../lib/mongodb/client"
+
+  export default NextAuth({
+    secret: process.env.NEXTAUTH_SECRET,
+  + adapter: MongoDBAdapter(clientPromise),
+    providers: [
+      EmailProvider({
+        server: {
+          host: process.env.EMAIL_SERVER_HOST,
+          port: process.env.EMAIL_SERVER_PORT,
+          auth: {
+            user: process.env.EMAIL_SERVER_USER,
+            pass: process.env.EMAIL_SERVER_PASSWORD
+          }
+        },
+        from: process.env.EMAIL_FROM
+      }),
+    ],
+  })
+  ```
+
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)">
+    TODO Core
+  </TabItem>
+</Tabs>
 
-export default NextAuth({
-  secret: process.env.NEXTAUTH_SECRET,
-+ adapter: MongoDBAdapter(clientPromise),
-  providers: [
-    EmailProvider({
-      server: {
-        host: process.env.EMAIL_SERVER_HOST,
-        port: process.env.EMAIL_SERVER_PORT,
-        auth: {
-          user: process.env.EMAIL_SERVER_USER,
-          pass: process.env.EMAIL_SERVER_PASSWORD
-        }
-      },
-      from: process.env.EMAIL_FROM
-    }),
-  ],
-})
-```
 
 ## 4. Wiring all together
 

docs/docs/getting-started/oauth-tutorial.mdx

@@ -100,7 +100,7 @@ NextAuth.js provides [`useSession()`](/reference/react/#usesession) - a [React H
 
 ```ts title="pages/_app.tsx"
 import { SessionProvider } from "next-auth/react"
-import type { AppProps } from 'next/app'
+import type { AppProps } from "next/app"
 
 export default function App({
   Component,
@@ -182,7 +182,127 @@ export default async function listMovies(req, res) {
 
   </TabItem>
   <TabItem value="sveltekit" label="SvelteKit">
-TODO: SvelteKit
+
+:::warning
+`@auth/sveltekit` is currently experimental. The API _will_ change in the future.
+:::
+
+### Prerequisites
+
+This tutorial assumes you have a SvelteKit application set up. If you don't, you can follow the [SvelteKit tutorial](https://kit.svelte.dev/docs/creating-a-project) to get started.
+
+### Installing Auth.js
+
+```bash npm2yarn
+npm install @auth/core @auth/sveltekit
+```
+
+### Create server hook
+
+Create the following [Server hook](https://kit.svelte.dev/docs/hooks) file. This route contains the necessary configuration for Auth.js, as well as the dynamic route handler:
+
+```ts title="src/hooks.server.ts"
+import { SvelteKitAuth } from "@auth/sveltekit"
+import GitHub from "@auth/core/providers/github"
+import { GITHUB_ID, GITHUB_SECRET } from "$env/static/private"
+ *
+export const handle = SvelteKitAuth({
+  providers: [GitHub({ clientId: GITHUB_ID, clientSecret: GITHUB_SECRET })],
+})
+```
+
+:::info
+
+Behind the scenes, this creates all the relevant OAuth API routes within `/api/auth/*` so that auth API requests to:
+
+- [GET `/api/auth/signin`](https://authjs.dev/reference/rest-api#get--apiauthsignin)
+- [POST `/api/auth/signin/:provider`](https://authjs.dev/reference/rest-api#post--apiauthsigninprovider)
+- [GET/POST `/api/auth/callback/:provider`](https://authjs.dev/reference/rest-api#get--post--apiauthcallbackprovider)
+- [GET `/api/auth/signout`](https://authjs.dev/reference/rest-api#get--apiauthsignout)
+- [POST `/api/auth/signout`](https://authjs.dev/reference/rest-api#post--apiauthsignout)
+- [GET `/api/auth/session`](https://authjs.dev/reference/rest-api#get--apiauthsession)
+- [GET `/api/auth/csrf`](https://authjs.dev/reference/rest-api#get--apiauthcsrf)
+- [GET `/api/auth/providers`](https://authjs.dev/reference/rest-api#get--apiauthproviders)
+
+can be handled by Auth.js. In this way, Auth.js stays in charge of the whole application's authentication request/response flow.
+
+Auth.js is fully customizable - [our guides section](/guides/overview) teaches you how to set it up to handle auth in different ways. All the possible configuration options are [listed here](/reference/configuration/auth-config).
+:::
+
+### Adding environment variables
+
+You may notice we are using environment variables in the code example above. We take the value of `GITHUB_ID` and `GITHUB_SECRET` from the GitHub Developer OAuth Portal. See [Configuring OAuth Provider](/getting-started/oauth-tutorial#2-configuring-oauth-provider) section on how to get those.
+
+In your project root, create a `.env.local` file and add the `AUTH_SECRET` environment variable:
+
+```title=".env.local"
+AUTH_SECRET="This is an example"
+```
+
+`AUTH_SECRET` is a random string used by the library to encrypt tokens and email verification hashes, and **it's mandatory to keep things secure**! 🔥 🔐 . You can use:
+
+```
+$ openssl rand -base64 32
+```
+
+or https://generate-secret.vercel.app/32 to generate a random value for it.
+
+### Exposing the session via page store
+
+Auth.js provides us a getSession, function to access the session data and status, to call from the `event.locals` variable. We can now just call it and add it to our `$page` store.
+
+```ts
+import type { LayoutServerLoad } from './$types';
+ *
+export const load: LayoutServerLoad = async (event) => {
+  return {
+    session: await event.locals.getSession()
+  };
+};
+```
+
+### Consuming the session via page store
+
+You can use the `$page.data.session` variable from anywhere on your page. Learn more about SvelteKit's page store in the [SvelteKit docs](https://learn.svelte.dev/tutorial/page-store).
+
+```ts title="route/+page.svelte"
+<script>
+  import { signIn, signOut } from '@auth/sveltekit/client'
+  import { page } from '$app/stores'
+</script>
+
+{#if $page.data.session?.user}
+  <p>Signed in as {$page.data.session.user.email}</p>
+  <button on:click={signOut}>Sign out</button>
+  <img src="https://cdn.pixabay.com/photo/2017/08/11/19/36/vw-2632486_1280.png" />
+{:else}
+  <p>Not signed in.</p>
+  <button on:click={() => signIn('github')}>Sign in</button>
+{/if}
+```
+
+### Protecting API Routes
+
+To protect your API Routes (blocking unauthorized access to resources), you can use `locals.getSessions()` just like in the layouts file to know whether a session exists or not:
+
+```ts title="routes/api/movies/+server.ts"
+import { json, error } from "@sveltejs/kit";
+import type { RequestEvent } from "./$types";
+ 
+export async function GET({ locals }: RequestEvent) {
+  const session = await locals.getSession()
+  if (!session?.user) {
+    throw error(401, "You must sign in to view movies.");
+  }
+
+  return json({
+    movies: [
+      { title: "Alien vs Predator", id: 1 },
+      { title: "Reservoir Dogs", id: 2 },
+    ]
+  })
+}
+```
   </TabItem>
   <TabItem value="solidstart" label="SolidStart">
 TODO: SolidStart
@@ -218,7 +338,7 @@ The callback URL we insert should have the following pattern:
 
 In this case, given we want to try our authentication working locally on our machine and we're using **GitHub** as our OAuth provider, it'll be:
 
-<Tabs groupId="frameworks">
+<Tabs groupId="frameworks" queryString>
   <TabItem value="next" label="Next.js" default>
 
 ```
@@ -274,7 +394,7 @@ Note that, for each provider, the configuration process will be similar to what
 2. Create create your OAuth application within it
 3. Set the callback URL
 4. Get the Client ID and Generate a Client Secret
-:::
+   :::
 
 ## 3. Wiring all together
 
@@ -289,7 +409,7 @@ GITHUB_SECRET=67890
 
 Here is our server configuration file again:
 
-<Tabs groupId="frameworks">
+<Tabs groupId="frameworks" queryString>
   <TabItem value="next" label="Next.js" default>
 
 ```ts title="pages/api/auth/[...nextauth].ts"
@@ -314,7 +434,24 @@ $ npm run next dev
 
   </TabItem>
   <TabItem value="sveltekit" label="SvelteKit">
-TODO SvelteKit
+
+```ts title="src/hooks.server.ts"
+import { SvelteKitAuth } from "@auth/sveltekit"
+import GitHub from "@auth/core/providers/github"
+import { GITHUB_ID, GITHUB_SECRET } from "$env/static/private"
+ *
+export const handle = SvelteKitAuth({
+  providers: [GitHub({ clientId: GITHUB_ID, clientSecret: GITHUB_SECRET })],
+})
+```
+
+Great! We're now ready to run our application locally. Start the Svelte app by running on your terminal the following command and navigating to [`http://localhost:5173`](http://localhost:5173):
+
+```
+$ npm run vite dev
+```
+
+
   </TabItem>
   <TabItem value="solidstart" label="SolidStart">
 TODO SolidStart

docs/docs/getting-started/typescript.md

@@ -9,6 +9,9 @@ https://github.com/nextauthjs/next-auth-example
 
 ---
 
+import Tabs from "@theme/Tabs"
+import TabItem from "@theme/TabItem"
+
 ## Adapters
 
 If you're writing your own custom Adapter, you can take advantage of the types to make sure your implementation conforms to what's expected:
@@ -46,30 +49,45 @@ This will work in code editors with a strong TypeScript integration like VSCode
 
 Let's look at `Session`:
 
-```ts title="pages/api/auth/[...nextauth].ts"
-import NextAuth from "next-auth"
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js" default>
 
-export default NextAuth({
-  callbacks: {
-    session({ session, token, user }) {
-      return session // The return type will match the one returned in `useSession()`
+  ```ts title="pages/api/auth/[...nextauth].ts"
+  import NextAuth from "next-auth"
+
+  export default NextAuth({
+    callbacks: {
+      session({ session, token, user }) {
+        return session // The return type will match the one returned in `useSession()`
+      },
     },
-  },
-})
-```
+  })
+  ```
 
-```ts title="pages/index.ts"
-import { useSession } from "next-auth/react"
+  ```ts title="pages/index.ts"
+  import { useSession } from "next-auth/react"
 
-export default function IndexPage() {
-  // `session` will match the returned value of `callbacks.session()` from `NextAuth()`
-  const { data: session } = useSession()
+  export default function IndexPage() {
+    // `session` will match the returned value of `callbacks.session()` from `NextAuth()`
+    const { data: session } = useSession()
 
-  return (
-    // Your component
-  )
-}
-```
+    return (
+      // Your component
+    )
+  }
+  ```
+
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)">
+    TODO Core
+  </TabItem>
+</Tabs>
 
 To extend/augment this type, create a `types/next-auth.d.ts` file in your project:
 

docs/docs/guides/adapters/using-a-database-adapter.md

@@ -8,6 +8,6 @@ An **Adapter** in Auth.js connects your application to whatever database or back
 When using a database, you can still use JWT for session handling for fast access. See the [`session.strategy`](/reference/configuration/auth-config#session) option. Read about the trade-offs of JWT in the [FAQ](/concepts/faq#json-web-tokens).
 :::
 
-We have a list of official adapters that are distributed as their own packages under the `@next-auth/{name}-adapter` namespace. Their source code is available in their various adapters package directories at [`nextauthjs/next-auth`](https://github.com/nextauthjs/next-auth/tree/main/packages):
+We have a list of official adapters that are distributed as their own packages under the `@auth/{name}-adapter` namespace. Their source code is available in their various adapters package directories at [`nextauthjs/next-auth`](https://github.com/nextauthjs/next-auth/tree/main/packages):
 
 - [All available adapters](/reference/adapters)

docs/docs/guides/basics/callbacks.md

@@ -12,7 +12,7 @@ If you want to pass data such as an Access Token or User ID to the browser when
 
 You can specify a handler for any of the callbacks below.
 
-```js title="pages/api/auth/[...nextauth].js"s
+```js title="auth.js"
   callbacks: {
     async signIn({ user, account, profile, email, credentials }) {
       return true
@@ -35,7 +35,7 @@ The documentation below shows how to implement each callback, their default beha
 
 Use the `signIn()` callback to control if a user is allowed to sign in.
 
-```js title="pages/api/auth/[...nextauth].js"
+```js title="auth.js"
 callbacks: {
   async signIn({ user, account, profile, email, credentials }) {
     const isAllowedToSignIn = true
@@ -79,7 +79,7 @@ By default only URLs on the same URL as the site are allowed, you can use the re
 
 The default redirect callback looks like this:
 
-```js title="pages/api/auth/[...nextauth].js"
+```js title="auth.js"
 callbacks: {
   async redirect({ url, baseUrl }) {
     // Allows relative callback URLs
@@ -107,7 +107,7 @@ Requests to `/api/auth/signin`, `/api/auth/session` and calls to `getSession()`,
 
 The contents _user_, _account_, _profile_ and _isNewUser_ will vary depending on the provider and on if you are using a database or not. You can persist data such as User ID, OAuth Access Token in this token. To make it available in the browser, check out the [`session()` callback](#session-callback) as well.
 
-```js title="pages/api/auth/[...nextauth].js"
+```js title="auth.js"
 callbacks: {
   async jwt({ token, account }) {
     // Persist the OAuth access_token to the token right after signin
@@ -132,7 +132,7 @@ e.g. `getSession()`, `useSession()`, `/api/auth/session`
 - When using database sessions, the User object is passed as an argument.
 - When using JSON Web Tokens for sessions, the JWT payload is provided instead.
 
-```js title="pages/api/auth/[...nextauth].js"
+```js title="auth.js"
 callbacks: {
   async session({ session, token, user }) {
     // Send properties to the client, like an access_token from a provider.

docs/docs/guides/basics/initialization.md

@@ -2,6 +2,14 @@
 title: Custom Initialization
 ---
 
+import Tabs from "@theme/Tabs"
+import TabItem from "@theme/TabItem"
+
+
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js" default>
+
+
 In Next.js, you can define an API route that will catch all requests that begin with a certain path. Conveniently, this is called [Catch all API routes](https://nextjs.org/docs/api-routes/dynamic-api-routes#catch-all-api-routes).
 
 When you define a `/pages/api/auth/[...nextauth]` JS/TS file, you instruct Auth.js that every API request beginning with `/api/auth/*` should be handled by the code written in the `[...nextauth]` file.
@@ -120,3 +128,15 @@ This way of initializing `NextAuth` is very powerful, but should be used sparing
 :::warning
 Changing parts of the request that is essential to `NextAuth` to do it's job - like messing with the [default cookies](/reference/configuration/auth-config#cookies) - can have unforeseen consequences, and have the potential to introduce security holes if done incorrectly. Only change those if you understand consequences.
 :::
+
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)">
+    TODO Core
+  </TabItem>
+</Tabs>

docs/docs/guides/basics/pages.md

@@ -2,13 +2,16 @@
 title: Pages
 ---
 
+import Tabs from "@theme/Tabs"
+import TabItem from "@theme/TabItem"
+
 Auth.js automatically creates simple, unbranded authentication pages for handling Sign in, Sign out, Email Verification and displaying error messages.
 
 The options displayed on the sign-up page are automatically generated based on the providers specified in the options passed to Auth.js.
 
 To add a custom login page, you can use the `pages` option:
 
-```javascript title="pages/api/auth/[...nextauth].js"
+```javascript title="auth.js"
 ...
   pages: {
     signIn: '/auth/signin',
@@ -76,6 +79,11 @@ In addition, you can define the background color and text color of the button wi
 
 In order to get the available authentication providers and the URLs to use for them, you can make a request to the API endpoint `/api/auth/providers`:
 
+
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js" default>
+
+
 ```jsx title="pages/auth/signin.js"
 import { getProviders, signIn } from "next-auth/react"
 
@@ -100,6 +108,18 @@ export async function getServerSideProps(context) {
   }
 }
 ```
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)">
+    TODO Core
+  </TabItem>
+</Tabs>
+
 
 There is another, more fully styled example signin page available [here](https://github.com/ndom91/next-auth-example-sign-in-page).
 
@@ -107,6 +127,10 @@ There is another, more fully styled example signin page available [here](https:/
 
 If you create a custom sign in form for email sign in, you will need to submit both fields for the **email** address and **csrfToken** from **/api/auth/csrf** in a POST request to **/api/auth/signin/email**.
 
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js" default>
+
+
 ```jsx title="pages/auth/email-signin.js"
 import { getCsrfToken } from "next-auth/react"
 
@@ -131,6 +155,18 @@ export async function getServerSideProps(context) {
 }
 ```
 
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)">
+    TODO Core
+  </TabItem>
+</Tabs>
+
 You can also use the `signIn()` function which will handle obtaining the CSRF token for you:
 
 ```js
@@ -141,6 +177,10 @@ signIn("email", { email: "jsmith@example.com" })
 
 If you create a sign in form for credentials based authentication, you will need to pass a **csrfToken** from **/api/auth/csrf** in a `POST` request to **/api/auth/callback/credentials**.
 
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js" default>
+
+
 ```jsx title="pages/auth/credentials-signin.js"
 import { getCsrfToken } from "next-auth/react"
 
@@ -170,6 +210,18 @@ export async function getServerSideProps(context) {
 }
 ```
 
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)">
+    TODO Core
+  </TabItem>
+</Tabs>
+
 You can also use the `signIn()` function which will handle obtaining the CSRF token for you:
 
 ```js

docs/docs/guides/basics/refresh-token-rotation.md

@@ -2,6 +2,9 @@
 title: Refresh token rotation
 ---
 
+import Tabs from "@theme/Tabs"
+import TabItem from "@theme/TabItem"
+
 Refresh token rotation is the practice of updating an `access_token` on behalf of the user, without requiring interaction (eg.: re-sign in). `access_token`s are usually issued for a limited time. After they expire, the service verifying them will ignore the value. Instead of asking the user to sign in again to obtain a new `access_token`, certain providers support exchanging a `refresh_token` for a new `access_token`, renewing the expiry time. Let's see how this can be achieved.
 
 :::note
@@ -26,6 +29,20 @@ Using the [jwt](../../reference/core/types#jwt) and [session](../../reference/co
 
 Below is a sample implementation using Google's Identity Provider. Please note that the OAuth 2.0 request in the `refreshAccessToken()` function will vary between different providers, but the core logic should remain similar.
 
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js">
+
+  TODO Next.js
+
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)" default>
+
 ```ts
 import { Auth } from "@auth/core"
 import { type TokenSet } from "@auth/core/types"
@@ -109,10 +126,27 @@ declare module "@auth/core/jwt" {
 }
 ```
 
+  </TabItem>
+</Tabs>
+
 #### Database strategy
 
 Using the database strategy is very similar, but instead of preserving the `access_token` and `refresh_token`, we save it, well, in the database.
 
+<Tabs groupId="frameworks" queryString>
+  <TabItem value="next" label="Next.js">
+
+  What
+
+  </TabItem>
+  <TabItem value="sveltekit" label="SvelteKit">
+    TODO SvelteKit
+  </TabItem>
+  <TabItem value="solidstart" label="SolidStart">
+    TODO SolidStart
+  </TabItem>
+  <TabItem value="core" label="Vanilla (No Framework)" default>
+
 ```ts
 import { Auth } from "@auth/core"
 import { type TokenSet } from "@auth/core/types"
@@ -195,6 +229,8 @@ declare module "@auth/core/jwt" {
   }
 }
 ```
+  </TabItem>
+</Tabs>
 
 ### Client Side
 

docs/docs/guides/corporate-proxies/avoid-corporate-link-checking-email-provider.md

@@ -22,7 +22,7 @@ This can be done by simply returning a `200` response on `HEAD` requests at the
 
 For example
 
-```jsx title="/pages/api/auth/[...nextauth].js"
+```jsx title="auth.js"
 import type { NextApiRequest, NextApiResponse } from "next"
 import NextAuth from "next-auth"
 

docs/docs/guides/corporate-proxies/corporate-proxy.md

@@ -24,7 +24,7 @@ index 77161bd..1082fba 100644
 
  var _openidClient = require("openid-client");
 
-+var HttpsProxyAgent = require("https-proxy-agent");
++import { HttpsProxyAgent } from 'https-proxy-agent';
 +
  async function openidClient(options) {
    const provider = options.provider;

docs/docs/guides/providers/credentials-provider.md

@@ -35,7 +35,7 @@ If you return an object it will be persisted to the JSON Web Token and the user
 
 The Credentials provider's `authorize()` method also provides the request object as the second parameter (see the example below).
 
-```js title="pages/api/auth/[...nextauth].js"
+```js title="auth.js"
 import CredentialsProvider from "next-auth/providers/credentials";
 ...
 providers: [
@@ -69,7 +69,18 @@ providers: [
 ...
 ```
 
-See the [callbacks documentation](/reference/configuration/auth-config#callbacks) for more information on how to interact with the token.
+See the [callbacks documentation](/reference/configuration/auth-config#callbacks) for more information on how to interact with the token. For example, you can add additional information to the token by returning an object from the `jwt()` callback:
+  
+```js
+callbacks: {
+  async jwt(token, user, account, profile, isNewUser) {
+    if (user) {
+      token.id = user.id
+    }
+    return token
+  }
+}
+```
 
 ## Example - Web3 / Signin With Ethereum
 

docs/docs/guides/providers/email-http-api.md

@@ -17,15 +17,15 @@ We will also refer to the [Prisma Adapter](/reference/adapter/prisma). A [databa
 
 ## Setup
 
-First, if you do not have a project using Auth.js, clone and set up a basic Auth.js project like the one [provided in](https://github.com/nextauthjs/next-auth-example.git) our example repo](https://github.com/nextauthjs/next-auth-example.git).
+First, if you do not have a project using Auth.js, clone and set up a basic Auth.js project like the one [provided in our example repo](https://github.com/nextauthjs/next-auth-example).
 
 - Install the [Prisma Adapter](/reference/adapter/prisma)
 - Generate an API key from your cloud Email provider of choice and add it to your `.env.*` file. For example, mine is going to be called `SENDGRID_API`
 - Add the following configuration to your configuration file:
 
-```js title="pages/api/auth/[...nextauth].ts"
+```js title="auth.ts"
 import NextAuth, { NextAuthOptions } from "next-auth"
-import { PrismaAdapter } from "@next-auth/prisma-adapter"
+import { PrismaAdapter } from "@auth/prisma-adapter"
 import { PrismaClient } from "@prisma/client"
 
 const prisma = new PrismaClient()
@@ -42,16 +42,15 @@ export const authOptions: NextAuthOptions = {
   ],
 }
 
-export default NextAuth(authOptions)
 ```
 
 Next, all that's left to do is call the HTTP endpoint from our cloud email provider and pass it the required metadata like the `to` address, the email `body`, and any other fields we may need to include.
 
 As mentioned earlier, we're going to be using SendGrid in this example, so the appropriate endpoint is `https://api.sendgrid.com/v3/mail/send` ([more info](https://docs.sendgrid.com/for-developers/sending-email/api-getting-started)). Therefore, we're going to pull out some of the important information from the `params` argument and use it in a `fetch()` call to the previously mentioned SendGrid API.
 
-```js title="pages/api/auth/[...nextauth].ts"
+```js title="auth.ts"
 import NextAuth, { NextAuthOptions } from "next-auth"
-import { PrismaAdapter } from "@next-auth/prisma-adapter"
+import { PrismaAdapter } from "@auth/prisma-adapter"
 import { PrismaClient } from "@prisma/client"
 
 const prisma = new PrismaClient()

docs/docs/guides/providers/email-provider.md

@@ -46,7 +46,7 @@ Create an `.env` file to the root of your project and add the connection string
 
 Now you can add the email provider like this:
 
-```js {3} title="pages/api/auth/[...nextauth].js"
+```js {3} title="auth.js"
 import EmailProvider from "next-auth/providers/email";
 ...
 providers: [
@@ -71,7 +71,7 @@ EMAIL_FROM=noreply@example.com
 
 Now you can add the provider settings to the NextAuth options object in the Email Provider.
 
-```js title="pages/api/auth/[...nextauth].js"
+```js title="auth.js"
 import EmailProvider from "next-auth/providers/email";
 ...
 providers: [
@@ -101,7 +101,7 @@ You can fully customize the sign in email that is sent by passing a custom funct
 
 e.g.
 
-```js {3} title="pages/api/auth/[...nextauth].js"
+```js {3} title="auth.js"
 import EmailProvider from "next-auth/providers/email";
 ...
 providers: [
@@ -206,7 +206,7 @@ If you want to generate great looking email client compatible HTML with React, c
 
 By default, we are generating a random verification token. You can define a `generateVerificationToken` method in your provider options if you want to override it:
 
-```js title="pages/api/auth/[...nextauth].js"
+```js title="auth.js"
 providers: [
   EmailProvider({
     async generateVerificationToken() {

docs/docusaurus.config.js

@@ -213,7 +213,25 @@ const docusaurusConfig = {
           breadcrumbs: false,
           routeBasePath: "/",
           sidebarPath: require.resolve("./sidebars.js"),
-          editUrl: "https://github.com/nextauthjs/next-auth/edit/main/docs",
+          /**
+           *
+           * @param {{
+           *  version: string;
+           *  versionDocsDirPath: string;
+           *  docPath: string;
+           *  permalink: string;
+           *  locale: string;
+           *}} params
+           */
+          editUrl({ docPath }) {
+            // TODO: support other packages, fix directory links like "providers"
+            if (docPath.includes("reference/core")) {
+              const file = docPath.split("reference/core/")[1].replace(".md", ".ts").replace("_", "/")
+              const base = `https://github.com/nextauthjs/next-auth/edit/main/packages/core/src/${file}`
+              return base
+            }
+            return "https://github.com/nextauthjs/next-auth/edit/main/docs"
+          },
           lastVersion: "current",
           showLastUpdateAuthor: true,
           showLastUpdateTime: true,

docs/package.json

@@ -27,15 +27,15 @@
     "styled-components": "5.3.6"
   },
   "devDependencies": {
-    "@docusaurus/core": "2.3.1",
-    "@docusaurus/eslint-plugin": "2.3.1",
-    "@docusaurus/module-type-aliases": "2.3.1",
-    "@docusaurus/preset-classic": "2.3.1",
-    "@docusaurus/theme-common": "2.3.1",
-    "@docusaurus/theme-mermaid": "2.3.1",
-    "@docusaurus/types": "2.3.1",
+    "@docusaurus/core": "2.4.1",
+    "@docusaurus/eslint-plugin": "2.4.1",
+    "@docusaurus/module-type-aliases": "2.4.1",
+    "@docusaurus/preset-classic": "2.4.1",
+    "@docusaurus/theme-common": "2.4.1",
+    "@docusaurus/theme-mermaid": "2.4.1",
+    "@docusaurus/types": "2.4.1",
     "docusaurus-plugin-typedoc": "1.0.0-next.5",
-    "typedoc": "^0.24.4",
+    "typedoc": "^0.24.8",
     "typedoc-plugin-markdown": "4.0.0-next.6"
   },
   "browserslist": {

package.json

@@ -6,7 +6,7 @@
   "scripts": {
     "build:app": "turbo run build --filter=next-auth-app",
     "build:docs": "turbo run build --filter=docs",
-    "build": "turbo run build --filter=next-auth --filter=@next-auth/* --filter=@auth/* --no-deps",
+    "build": "turbo run build --filter=next-auth --filter=@auth/* --no-deps",
     "test": "turbo run test --concurrency=1 --filter=[HEAD^1] --filter=./packages/* --filter=!@*upstash* --filter=!*dynamodb-* --filter=!*app*",
     "clean": "turbo run clean --no-cache",
     "dev:db": "turbo run dev --parallel --continue --filter=next-auth-app...",
@@ -44,12 +44,12 @@
     "prettier": "2.8.1",
     "prettier-plugin-svelte": "^2.8.1",
     "turbo": "^1.10.12",
-    "typescript": "4.9.4"
+    "typescript": "5.2.2"
   },
   "engines": {
     "node": "^16.13.0 || ^18.12.0"
   },
-  "packageManager": "pnpm@7.23.0",
+  "packageManager": "pnpm@8.7.1",
   "funding": [
     {
       "type": "github",
@@ -249,6 +249,7 @@
       {
         "files": [
           "apps/dev/nextjs/pages/api/auth/[...nextauth].ts",
+          "apps/examples/nextjs/auth.ts",
           "docs/{sidebars,docusaurus.config}.js"
         ],
         "options": {

packages/adapter-dgraph/package.json

@@ -41,13 +41,13 @@
     "test": "./tests/test.sh"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@types/jest": "^26.0.24",
     "@types/jsonwebtoken": "^8.5.5",
-    "@types/node-fetch": "^2.5.11",
     "jest": "^27.4.3",
     "ts-jest": "^27.0.3",
+    "typescript": "5.2.2",
     "undici": "5.22.1"
   },
   "dependencies": {
@@ -55,6 +55,6 @@
     "jsonwebtoken": "^8.5.1"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-dgraph/tests/index.test.ts

@@ -1,7 +1,7 @@
 import { DgraphAdapter, format } from "../src"
 import { client as dgraphClient } from "../src/lib/client"
 import * as fragments from "../src/lib/graphql/fragments"
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import fs from "fs"
 import path from "path"
 

packages/adapter-dgraph/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-drizzle/package.json

@@ -48,8 +48,8 @@
     "@auth/core": "workspace:*"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@types/better-sqlite3": "^7.6.4",
     "@types/uuid": "^8.3.3",
     "better-sqlite3": "^8.4.0",
@@ -60,6 +60,6 @@
     "postgres": "^3.3.4"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-drizzle/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-dynamodb/package.json

@@ -49,12 +49,12 @@
   "devDependencies": {
     "@aws-sdk/client-dynamodb": "^3.36.1",
     "@aws-sdk/lib-dynamodb": "^3.36.1",
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@shelf/jest-dynamodb": "^2.1.0",
     "jest": "^27.4.3"
   },
   "dependencies": {
     "@auth/core": "workspace:*"
   }
-}
+}

packages/adapter-dynamodb/tests/index.test.ts

@@ -1,7 +1,7 @@
 import { DynamoDB } from "@aws-sdk/client-dynamodb"
 import { DynamoDBDocument } from "@aws-sdk/lib-dynamodb"
 import { DynamoDBAdapter } from "../src"
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import { format } from "../src/"
 const config = {
   endpoint: "http://127.0.0.1:8000",

packages/adapter-dynamodb/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-fauna/package.json

@@ -51,12 +51,12 @@
   },
   "devDependencies": {
     "@fauna-labs/fauna-schema-migrate": "^2.1.3",
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "faunadb": "^4.3.0",
     "jest": "^27.4.3"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-fauna/tests/index.test.ts

@@ -1,5 +1,5 @@
 import { collections, FaunaAdapter, format, indexes, query } from "../src"
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import { Client as FaunaClient, Get, Match, Ref } from "faunadb"
 
 const client = new FaunaClient({

packages/adapter-fauna/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-firebase/package.json

@@ -48,10 +48,10 @@
     "firebase-admin": "^11.4.1"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "firebase-admin": "^11.4.1",
     "firebase-tools": "^11.16.1",
     "jest": "^29.3.1"
   }
-}
+}

packages/adapter-firebase/tests/index.test.ts

@@ -1,4 +1,4 @@
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 
 import { FirestoreAdapter, type FirebaseAdapterConfig } from "../src"
 import {

packages/adapter-firebase/tests/jest.config.js

@@ -1,4 +1,4 @@
-import config from "@next-auth/adapter-test/jest/jest-preset.js"
+import config from "@auth/adapter-test/jest/jest-preset.js"
 
 //TODO: update rest of the packages to Jest 29+
 const {testURL, ...rest} = config

packages/adapter-firebase/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-kysely/package.json

@@ -40,8 +40,8 @@
     "kysely": "^0.26.1"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@types/better-sqlite3": "^7.6.3",
     "@types/pg": "^8.6.5",
     "better-sqlite3": "^8.2.0",
@@ -51,6 +51,6 @@
     "pg": "^8.10.0"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-kysely/tests/index.test.ts

@@ -1,4 +1,4 @@
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import { Pool } from "pg"
 import {
   Kysely,

packages/adapter-kysely/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-mikro-orm/package.json

@@ -46,14 +46,14 @@
   "devDependencies": {
     "@mikro-orm/core": "^5",
     "@mikro-orm/sqlite": "^5",
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "jest": "^29"
   },
   "dependencies": {
     "@auth/core": "workspace:*"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-mikro-orm/tests/entities.test.ts

@@ -13,7 +13,7 @@ import {
   Options,
   types,
 } from "@mikro-orm/core"
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 
 globalThis.crypto ??= require("node:crypto").webcrypto
 

packages/adapter-mikro-orm/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-mongodb/package.json

@@ -45,12 +45,12 @@
     "mongodb": "^5 || ^4"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "jest": "^27.4.3",
-    "mongodb": "^5.1.0"
+    "mongodb": "^4.17.0"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-mongodb/tests/custom.test.ts

@@ -1,4 +1,4 @@
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import { defaultCollections, format, MongoDBAdapter, _id } from "../src"
 import { MongoClient } from "mongodb"
 const name = "custom-test"

packages/adapter-mongodb/tests/index.test.ts

@@ -1,4 +1,4 @@
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import { defaultCollections, format, MongoDBAdapter, _id } from "../src"
 import { MongoClient } from "mongodb"
 

packages/adapter-mongodb/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-neo4j/package.json

@@ -44,8 +44,8 @@
     "neo4j-driver": "^4.0.0 || ^5.7.0"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@types/uuid": "^8.3.3",
     "jest": "^27.4.3",
     "neo4j-driver": "^5.7.0"
@@ -54,6 +54,6 @@
     "@auth/core": "workspace:*"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-neo4j/tests/index.test.ts

@@ -1,5 +1,5 @@
 import * as neo4j from "neo4j-driver"
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import statements from "./resources/statements"
 
 import { Neo4jAdapter, format } from "../src"

packages/adapter-neo4j/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-pouchdb/package.json

@@ -45,8 +45,8 @@
     "@auth/core": "workspace:*"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@types/pouchdb": "^6.4.0",
     "jest": "^27.4.3",
     "pouchdb": "^8.0.1",
@@ -54,6 +54,6 @@
     "pouchdb-find": "^8.0.1"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-pouchdb/tests/index.test.ts

@@ -1,4 +1,4 @@
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import {
   createIndexes,
   PouchDBAdapter,

packages/adapter-pouchdb/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-prisma/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@auth/prisma-adapter",
-  "version": "1.0.1",
+  "version": "1.0.2",
   "description": "Prisma adapter for Auth.js",
   "homepage": "https://authjs.dev/reference/adapter/prisma",
   "repository": "https://github.com/nextauthjs/next-auth",
@@ -51,17 +51,17 @@
     "@auth/core": "workspace:*"
   },
   "peerDependencies": {
-    "@prisma/client": ">=2.26.0 || >=3 || >=4"
+    "@prisma/client": ">=2.26.0 || >=3 || >=4 || >=5"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
-    "@prisma/client": "^4.15.0",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
+    "@prisma/client": "^5.2.0",
     "jest": "^27.4.3",
-    "mongodb": "^4.4.0",
-    "prisma": "^4.15.0"
+    "mongodb": "^4.17.0",
+    "prisma": "^5.2.0"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
 }

packages/adapter-prisma/tests/index.test.ts

@@ -1,4 +1,4 @@
-import { randomUUID, runBasicTests } from "@next-auth/adapter-test"
+import { randomUUID, runBasicTests } from "@auth/adapter-test"
 import { PrismaClient } from "@prisma/client"
 import { PrismaAdapter } from "../src"
 import { ObjectId } from "mongodb"

packages/adapter-prisma/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-sequelize/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@auth/sequelize-adapter",
-  "version": "1.0.1",
+  "version": "1.0.2",
   "description": "Sequelize adapter for Auth.js",
   "homepage": "https://authjs.dev",
   "repository": "https://github.com/nextauthjs/next-auth",
@@ -43,12 +43,12 @@
     "sequelize": "^6.6.5"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "jest": "^27.4.3",
     "sequelize": "^6.6.5"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
 }

packages/adapter-sequelize/src/index.ts

@@ -301,7 +301,9 @@ export default function SequelizeAdapter(
     async deleteSession(sessionToken) {
       await sync()
 
+      const session = await Session.findOne({ where: { sessionToken } })
       await Session.destroy({ where: { sessionToken } })
+      return session?.get({ plain: true })
     },
     async createVerificationToken(token) {
       await sync()

packages/adapter-sequelize/tests/index.test.ts

@@ -1,5 +1,5 @@
 import { Sequelize, DataTypes } from "sequelize"
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import SequelizeAdapter, { models } from "../src"
 
 const sequelize = new Sequelize({

packages/adapter-sequelize/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-supabase/package.json

@@ -42,12 +42,12 @@
     "@supabase/supabase-js": "^2.0.5"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:^0.0.0",
-    "@next-auth/tsconfig": "workspace:^0.0.0",
+    "@auth/adapter-test": "workspace:^0.0.0",
+    "@auth/tsconfig": "workspace:^0.0.0",
     "@supabase/supabase-js": "^2.0.5",
     "jest": "^27.4.3"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-supabase/tests/index.test.ts

@@ -1,4 +1,4 @@
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import { format, SupabaseAdapter } from "../src"
 import { createClient } from "@supabase/supabase-js"
 import type {

packages/adapter-supabase/tests/test.sh

@@ -2,7 +2,7 @@
 
 # install Supabase CLI when run on CI
 if [ "$CI" = true ]; then
-	wget -q -O supabase.deb https://github.com/supabase/cli/releases/download/v0.29.0/supabase_0.29.0_linux_amd64.deb
+	wget -q -O supabase.deb https://github.com/supabase/cli/releases/download/v1.91.1/supabase_1.91.1_linux_amd64.deb
 	sudo dpkg -i supabase.deb
 fi
 
@@ -17,3 +17,4 @@ if npx jest; then
 else
 	supabase stop && exit 1
 fi
+

packages/adapter-supabase/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-test/package.json

@@ -1,5 +1,5 @@
 {
-  "name": "@next-auth/adapter-test",
+  "name": "@auth/adapter-test",
   "version": "0.0.0",
   "repository": "https://github.com/nextauthjs/next-auth.git",
   "contributors": [
@@ -21,6 +21,6 @@
     "@types/nodemailer": "^6.4.4",
     "jest": "^29.5.0",
     "ts-jest": "^27.0.3",
-    "typescript": "^4.2.4"
+    "typescript": "5.2.2"
   }
 }

packages/adapter-typeorm/package.json

@@ -50,8 +50,8 @@
     "@auth/core": "workspace:*"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "jest": "^27.4.3",
     "mssql": "^7.2.1",
     "mysql": "^2.18.1",
@@ -59,7 +59,7 @@
     "sqlite3": "^5.0.8",
     "typeorm": "0.3.15",
     "typeorm-naming-strategies": "^4.1.0",
-    "typescript": "^4.7.4"
+    "typescript": "5.2.2"
   },
   "peerDependencies": {
     "mssql": "^6.2.1 || 7",
@@ -83,6 +83,6 @@
     }
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-typeorm/tests/helpers.ts

@@ -1,6 +1,6 @@
 import { DataSource } from "typeorm"
 import type { DataSourceOptions } from "typeorm"
-import type { TestOptions } from "@next-auth/adapter-test"
+import type { TestOptions } from "@auth/adapter-test"
 import * as defaultEntities from "../src/entities"
 import { parseDataSourceConfig } from "../src/utils"
 

packages/adapter-typeorm/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-upstash-redis/package.json

@@ -44,8 +44,8 @@
     "@upstash/redis": "^1.0.1"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:*",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/adapter-test": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@types/uuid": "^8.3.3",
     "@upstash/redis": "^1.0.1",
     "dotenv": "^10.0.0",
@@ -54,6 +54,6 @@
     "next-auth": "workspace:*"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-upstash-redis/tests/index.test.ts

@@ -1,6 +1,6 @@
 import "isomorphic-fetch"
 import { Redis } from "@upstash/redis"
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import { hydrateDates, UpstashRedisAdapter } from "../src"
 import "dotenv/config"
 

packages/adapter-upstash-redis/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/adapter-xata/package.json

@@ -43,13 +43,13 @@
     "@xata.io/client": ">=0.13.0"
   },
   "devDependencies": {
-    "@next-auth/adapter-test": "workspace:^0.0.0",
-    "@next-auth/tsconfig": "workspace:^0.0.0",
+    "@auth/adapter-test": "workspace:^0.0.0",
+    "@auth/tsconfig": "workspace:^0.0.0",
     "jest": "^27.4.3",
     "@xata.io/client": "^0.13.0",
-    "typescript": "^4.7.4"
+    "typescript": "5.2.2"
   },
   "jest": {
-    "preset": "@next-auth/adapter-test/jest"
+    "preset": "@auth/adapter-test/jest"
   }
-}
+}

packages/adapter-xata/tests/index.test.ts

@@ -1,5 +1,5 @@
 import "isomorphic-fetch"
-import { runBasicTests } from "@next-auth/adapter-test"
+import { runBasicTests } from "@auth/adapter-test"
 import "dotenv/config"
 import { XataClient } from "../src/xata"
 import { XataAdapter } from "../src"

packages/adapter-xata/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",

packages/core/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@auth/core",
-  "version": "0.12.0",
+  "version": "0.13.0",
   "description": "Authentication for the Web.",
   "keywords": [
     "authentication",
@@ -84,7 +84,7 @@
     "providers": "node scripts/generate-providers"
   },
   "devDependencies": {
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@types/cookie": "0.5.1",
     "@types/node": "18.11.10",
     "@types/nodemailer": "6.4.6",

packages/core/src/lib/web.ts

@@ -35,7 +35,7 @@ export async function toInternalRequest(
     const url = new URL(req.url.replace(/\/$/, ""))
     // FIXME: Upstream issue in Next.js, pathname segments get included as part of the query string
     url.searchParams.delete("nextauth")
-    const { pathname } = url
+    const pathname = url.pathname.replace(/\/$/, "")
 
     const action = actions.find((a) => pathname.includes(a))
     if (!action) {

packages/core/src/providers/azure-devops.ts

@@ -0,0 +1,180 @@
+import { OAuthConfig, OAuthUserConfig } from "./index.js"
+
+/** @see [Azure DevOps Services REST API 7.0 · Profiles · Get](https://learn.microsoft.com/en-us/rest/api/azure/devops/profile/profiles/get?view=azure-devops-rest-7.0&tabs=HTTP#examples) */
+export interface AzureDevOpsProfile extends Record<string, any> {
+  id: string
+  displayName: string
+  emailAddress: string
+  coreAttributes: { Avatar: { value: { value: string } } }
+}
+
+/**
+ * ## Documentation
+ *
+ * [Microsoft Docs](https://docs.microsoft.com/en-us) · [Azure DevOps](https://docs.microsoft.com/en-us/azure/devops/) · [Authorize access to REST APIs with OAuth 2.0](https://docs.microsoft.com/en-us/azure/devops/integrate/get-started/authentication/oauth?view=azure-devops])
+ *
+ * ## Configuration
+ *
+ * ### Register application
+ *
+ * :::tip
+ * [`https://app.vsaex.visualstudio.com/app/register`](https://app.vsaex.visualstudio.com/app/register)
+ * :::
+ *
+ * Provide the required details:
+ *
+ * - Company name
+ * - Application name
+ * - Application website
+ * - Authorization callback URL
+ *   - `https://example.com/api/auth/callback/azure-devops` for production
+ *   - `https://localhost/api/auth/callback/azure-devops` for development
+ * - Authorized scopes
+ *   - Required minimum is `User profile (read)`
+ *
+ * Click ‘Create Application’
+ *
+ * :::warning
+ * You are required to use HTTPS even for the localhost
+ * :::
+ *
+ * :::warning
+ * You will have to delete and create a new application to change the scopes later
+ * :::
+ *
+ * The following data is relevant for the next step:
+ *
+ * - App ID
+ * - Client Secret (after clicking the ‘Show’ button, ignore App Secret entry above it)
+ * - Authorized Scopes
+ *
+ * ### Set up the environment variables
+ *
+ * In `.env.local` create the following entries:
+ *
+ * ```
+ * AZURE_DEVOPS_APP_ID=<copy App ID value here>
+ * AZURE_DEVOPS_CLIENT_SECRET=<copy generated client secret value here>
+ * AZURE_DEVOPS_SCOPE=<copy space separated Authorized Scopes list here>
+ * ```
+ *
+ * ## Example
+ *
+ * ```js title="pages/api/auth/[...nextauth].js"
+ * import AzureDevOpsProvider from "next-auth/providers/azure-devops"
+ * ...
+ * providers: [
+ *   AzureDevOpsProvider({
+ *     clientId: process.env.AZURE_DEVOPS_APP_ID,
+ *     clientSecret: process.env.AZURE_DEVOPS_CLIENT_SECRET,
+ *     scope: process.env.AZURE_DEVOPS_SCOPE,
+ *   }),
+ * ]
+ * ...
+ * ```
+ *
+ * ### Refresh token rotation
+ *
+ * Use the [main guide](/guides/basics/refresh-token-rotation) as your starting point with the following considerations:
+ *
+ * ```js title="pages/api/auth/[...nextauth].js"
+ * async jwt({ token, user, account }) {
+ *   ...
+ *   // The token has an absolute expiration time
+ *   const accessTokenExpires = account.expires_at * 1000
+ *   ...
+ * }
+ *
+ * async function refreshAccessToken(token) {
+ *   ...
+ *   const response = await fetch(
+ *     "https://app.vssps.visualstudio.com/oauth2/token",
+ *     {
+ *       headers: { "Content-Type": "application/x-www-form-urlencoded" },
+ *       method: "POST",
+ *       body: new URLSearchParams({
+ *         client_assertion_type:
+ *           "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
+ *         client_assertion: AZURE_DEVOPS_CLIENT_SECRET,
+ *         grant_type: "refresh_token",
+ *         assertion: token.refreshToken,
+ *         redirect_uri:
+ *           process.env.NEXTAUTH_URL + "/api/auth/callback/azure-devops",
+ *       }),
+ *     }
+ *   )
+ *   ...
+ *   // The refreshed token comes with a relative expiration time
+ *   const accessTokenExpires = Date.now() + newToken.expires_in * 1000
+ *   ...
+ * }
+ * ```
+ */
+export default function AzureDevOpsProvider<P extends AzureDevOpsProfile>(
+  options: OAuthUserConfig<P> & {
+    /**
+     * https://docs.microsoft.com/en-us/azure/devops/integrate/get-started/authentication/oauth?view=azure-devops#scopes
+     * @default vso.profile
+     */
+    scope?: string
+  }
+): OAuthConfig<P> {
+  const scope = options.scope ?? "vso.profile"
+  const tokenEndpointUrl = "https://app.vssps.visualstudio.com/oauth2/authorize"
+  const userInfoEndpointUrl =
+    "https://app.vssps.visualstudio.com/_apis/profile/profiles/me?details=true&coreAttributes=Avatar&api-version=6.0"
+
+  return {
+    id: "azure-devops",
+    name: "Azure DevOps",
+    type: "oauth",
+
+    authorization: {
+      url: "https://app.vssps.visualstudio.com/oauth2/authorize",
+      params: { response_type: "Assertion", scope },
+    },
+
+    token: {
+      url: tokenEndpointUrl,
+      async request(context) {
+        const response = await fetch(tokenEndpointUrl, {
+          headers: { "Content-Type": "application/x-www-form-urlencoded" },
+          method: "POST",
+          body: new URLSearchParams({
+            client_assertion_type:
+              "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
+            client_assertion: context.provider.clientSecret as string,
+            grant_type: "urn:ietf:params:oauth:grant-type:jwt-bearer",
+            assertion: context.params.code as string,
+            redirect_uri: context.provider.callbackUrl,
+          }),
+        })
+        return { tokens: await response.json() }
+      },
+    },
+
+    userinfo: {
+      url: userInfoEndpointUrl,
+      async request(context) {
+        const accessToken = context.tokens.access_token as string
+        const response = await fetch(userInfoEndpointUrl, {
+          headers: {
+            Authorization: `Bearer ${accessToken}`,
+          },
+        })
+        return response.json()
+      },
+    },
+
+    profile(profile) {
+      return {
+        id: profile.id,
+        name: profile.displayName,
+        email: profile.emailAddress,
+        image: `data:image/jpeg;base64,${profile.coreAttributes.Avatar.value.value}`,
+      }
+    },
+
+    options,
+  }
+}

packages/core/src/providers/credentials.ts

@@ -77,6 +77,19 @@ export type CredentialsProviderType = "Credentials"
  * with supporting usernames and passwords.
  *
  * :::
+ * 
+ * See the [callbacks documentation](/reference/configuration/auth-config#callbacks) for more information on how to interact with the token. For example, you can add additional information to the token by returning an object from the `jwt()` callback:
+ *   
+ * ```js
+ * callbacks: {
+ *   async jwt(token, user, account, profile, isNewUser) {
+ *     if (user) {
+ *       token.id = user.id
+ *     }
+ *     return token
+ *   }
+ * }
+ * ```
  *
  * @example
  * ```js

packages/core/src/providers/linkedin.ts

@@ -10,23 +10,11 @@
  */
 import type { OAuthConfig, OAuthUserConfig } from "./index.js"
 
-interface Identifier {
-  identifier: string
-}
-
-interface Element {
-  identifiers?: Identifier[]
-}
-
-export interface LinkedInProfile extends Record<string, any> {
-  id: string
-  localizedFirstName: string
-  localizedLastName: string
-  profilePicture: {
-    "displayImage~": {
-      elements?: Element[]
-    }
-  }
+export interface LinkedInProfile {
+  sub: string
+  name: string
+  email: string
+  picture: string
 }
 
 /**
@@ -83,36 +71,10 @@ export default function LinkedIn<P extends LinkedInProfile>(
   return {
     id: "linkedin",
     name: "LinkedIn",
-    type: "oauth",
-    authorization: {
-      url: "https://www.linkedin.com/oauth/v2/authorization",
-      params: { scope: "r_liteprofile r_emailaddress" },
-    },
-    token: "https://www.linkedin.com/oauth/v2/accessToken",
+    type: "oidc",
     client: {
       token_endpoint_auth_method: "client_secret_post",
     },
-    userinfo: {
-      url: "https://api.linkedin.com/v2/me",
-      params: {
-        projection: `(id,localizedFirstName,localizedLastName,profilePicture(displayImage~digitalmediaAsset:playableStreams))`,
-      },
-    },
-    async profile(profile, tokens) {
-      const emailResponse = await fetch(
-        "https://api.linkedin.com/v2/emailAddress?q=members&projection=(elements*(handle~))",
-        { headers: { Authorization: `Bearer ${tokens.access_token}` } }
-      )
-      const emailData = await emailResponse.json()
-      return {
-        id: profile.id,
-        name: `${profile.localizedFirstName} ${profile.localizedLastName}`,
-        email: emailData?.elements?.[0]?.["handle~"]?.emailAddress,
-        image:
-          profile.profilePicture?.["displayImage~"]?.elements?.[0]
-            ?.identifiers?.[0]?.identifier,
-      }
-    },
     style: {
       logo: "/linkedin.svg",
       logoDark: "/linkedin-dark.svg",

packages/core/tsconfig.json

@@ -1,12 +1,16 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "allowJs": true,
     "baseUrl": ".",
     "isolatedModules": true,
     "jsx": "react-jsx",
     "jsxImportSource": "preact",
-    "lib": ["dom", "dom.iterable", "esnext"],
+    "lib": [
+      "dom",
+      "dom.iterable",
+      "esnext"
+    ],
     "target": "ES2020",
     "module": "ESNext",
     "moduleResolution": "node",
@@ -18,6 +22,13 @@
     "declarationMap": true,
     "declaration": true
   },
-  "include": ["src/**/*"],
-  "exclude": ["*.js", "*.d.ts", "lib", "providers"]
-}
+  "include": [
+    "src/**/*"
+  ],
+  "exclude": [
+    "*.js",
+    "*.d.ts",
+    "lib",
+    "providers"
+  ]
+}

packages/frameworks-solid-start/package.json

@@ -35,7 +35,7 @@
     "solid-js": "^1.5.7",
     "solid-start": "^0.2.14",
     "tsup": "^6.5.0",
-    "typescript": "^4.8.2"
+    "typescript": "5.2.2"
   },
   "peerDependencies": {
     "@auth/core": "~0.2.2 || ^0.2.2",
@@ -50,4 +50,4 @@
   "author": "OrJDev <orjdeveloper@gmail.com>",
   "repository": "https://github.com/nextauthjs/next-auth",
   "license": "ISC"
-}
+}

packages/frameworks-sveltekit/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@auth/sveltekit",
-  "version": "0.3.6",
+  "version": "0.3.7",
   "description": "Authentication for SvelteKit.",
   "keywords": [
     "authentication",
@@ -40,7 +40,7 @@
     "svelte": "^3.54.0",
     "svelte-check": "^2.9.2",
     "tslib": "^2.4.1",
-    "typescript": "^4.9.3",
+    "typescript": "5.2.2",
     "vite": "^4.0.5",
     "vitest": "^0.25.3"
   },

packages/frameworks-sveltekit/src/lib/client.ts

@@ -8,6 +8,7 @@ import type {
   BuiltInProviderType,
   RedirectableProviderType,
 } from "@auth/core/providers"
+import { base } from "$app/paths";
 
 /**
  * Client-side method to initiate a signin flow
@@ -34,16 +35,15 @@ export async function signIn<
   const isEmail = providerId === "email"
   const isSupportingReturn = isCredentials || isEmail
 
-  // TODO: Handle custom base path
-  const signInUrl = `/auth/${
+  const basePath = base ?? ""
+  const signInUrl = `${basePath}/auth/${
     isCredentials ? "callback" : "signin"
   }/${providerId}`
 
   const _signInUrl = `${signInUrl}?${new URLSearchParams(authorizationParams)}`
 
-  // TODO: Handle custom base path
   // TODO: Remove this since Sveltekit offers the CSRF protection via origin check
-  const csrfTokenResponse = await fetch("/auth/csrf")
+  const csrfTokenResponse = await fetch(`${basePath}/auth/csrf`)
   const { csrfToken } = await csrfTokenResponse.json()
 
   const res = await fetch(_signInUrl, {
@@ -81,11 +81,11 @@ export async function signIn<
  */
 export async function signOut(options?: SignOutParams) {
   const { callbackUrl = window.location.href } = options ?? {}
-  // TODO: Custom base path
+  const basePath = base ?? ""
   // TODO: Remove this since Sveltekit offers the CSRF protection via origin check
-  const csrfTokenResponse = await fetch("/auth/csrf")
+  const csrfTokenResponse = await fetch(`${basePath}/auth/csrf`)
   const { csrfToken } = await csrfTokenResponse.json()
-  const res = await fetch(`/auth/signout`, {
+  const res = await fetch(`${basePath}/auth/signout`, {
     method: "post",
     headers: {
       "Content-Type": "application/x-www-form-urlencoded",

packages/frameworks-sveltekit/src/lib/index.ts

@@ -204,6 +204,7 @@
 import type { Handle, RequestEvent } from "@sveltejs/kit"
 
 import { dev } from "$app/environment"
+import { base } from "$app/paths"
 import { env } from "$env/dynamic/private"
 
 import { Auth } from "@auth/core"
@@ -216,7 +217,7 @@ export async function getSession(
   config.secret ??= env.AUTH_SECRET
   config.trustHost ??= true
 
-  const prefix = config.prefix ?? "/auth"
+  const prefix = config.prefix ?? `${base}/auth`
   const url = new URL(prefix + "/session", req.url)
   const request = new Request(url, { headers: req.headers })
   const response = await Auth(request, config)
@@ -236,7 +237,7 @@ export interface SvelteKitAuthConfig extends AuthConfig {
    * If you change the default value,
    * you must also update the callback URL used by the [providers](https://authjs.dev/reference/core/providers).
    *
-   * @default "/auth"
+   * @default `${base}/auth` - `base` is the base path of your SvelteKit app, configured in `svelte.config.js`.
    */
   prefix?: string
 }
@@ -260,7 +261,7 @@ function AuthHandle(svelteKitAuthOptions: SvelteKitAuthConfig | DynamicSvelteKit
       typeof svelteKitAuthOptions === "object"
         ? svelteKitAuthOptions
         : await svelteKitAuthOptions(event)
-    const { prefix = "/auth" } = authOptions
+    const { prefix = `${base}/auth` } = authOptions
     const { url, request } = event
 
     event.locals.getSession ??= () => getSession(request, authOptions)
@@ -285,6 +286,7 @@ export function SvelteKitAuth(options: SvelteKitAuthConfig | DynamicSvelteKitAut
   if (typeof options === "object") {
     options.secret ??= env.AUTH_SECRET
     options.trustHost ??= !!(env.AUTH_TRUST_HOST ?? env.VERCEL ?? dev)
+    options.prefix ??= `${base}/auth`
   }
   return AuthHandle(options)
 }

packages/frameworks-sveltekit/tsconfig.json

@@ -8,11 +8,17 @@
     "resolveJsonModule": true,
     "skipLibCheck": true,
     "sourceMap": true,
-    "strict": true
+    "strict": true,
+    "ignoreDeprecations": "5.0" // TODO: https://github.com/sveltejs/kit/issues/8650
   },
   // Path aliases are handled by https://kit.svelte.dev/docs/configuration#alias
   //
   // If you want to overwrite includes/excludes, make sure to copy over the relevant includes/excludes
   // from the referenced tsconfig.json - TypeScript does not merge them in
-  "exclude": ["scripts", "*.js", "../node_modules/**", "./[!ambient.d.ts]**"]
-}
+  "exclude": [
+    "scripts",
+    "*.js",
+    "../node_modules/**",
+    "./[!ambient.d.ts]**"
+  ]
+}

packages/next-auth/package.json

@@ -95,7 +95,7 @@
     "@babel/preset-react": "^7.17.12",
     "@babel/preset-typescript": "^7.17.12",
     "@edge-runtime/jest-environment": "1.1.0-beta.35",
-    "@next-auth/tsconfig": "workspace:*",
+    "@auth/tsconfig": "workspace:*",
     "@swc/core": "^1.2.198",
     "@swc/jest": "^0.2.21",
     "@testing-library/dom": "^8.13.0",

packages/next-auth/tsconfig.json

@@ -1,5 +1,5 @@
 {
-  "extends": "@next-auth/tsconfig/tsconfig.base.json",
+  "extends": "@auth/tsconfig/tsconfig.base.json",
   "compilerOptions": {
     "declarationMap": true,
     "emitDeclarationOnly": true,

packages/tsconfig/package.json

@@ -1,10 +1,8 @@
 {
-  "name": "@next-auth/tsconfig",
+  "name": "@auth/tsconfig",
   "private": true,
   "version": "0.0.0",
   "files": [
-    "tsconfig.adapters.json",
-    "tsconfig.base.json",
-    "tsconfig.eslint.json"
+    "tsconfig.base.json"
   ]
 }

packages/tsconfig/tsconfig.adapters.json

@@ -1,8 +0,0 @@
-{
-  "extends": "./tsconfig.base.json",
-  "compilerOptions": {
-    "target": "ES2019",
-    "module": "commonjs",
-    "strict": true
-  }
-}