Role Based Authorization with Next-Auth and Next.js 13

preview_player
Показать описание


  1. Sakura Dev
  2. authorization with next-auth
  3. role based authorization in nextjs 13 and next-auth
  4. next js
  5. next js 13
  6. next auth
Рекомендации по теме
How I setup 0:06:59

How I setup role based authorization Next Auth

Role Based Authorization 0:20:53

Role Based Authorization with Next-Auth and Next.js 13

Role-based Authentication in 0:13:29

Role-based Authentication in NextJs 13 using NextAuth

Next.js Role-Based User 0:36:21

Next.js Role-Based User Authorization & Access Control | Next Auth Protected Routes

How to Manage 0:12:11

How to Manage User Roles in NextJS / NodeJS

How I like 0:05:43

How I like to implement role based authorization in Next.js apps

Next.js Authentication - 1:26:55

Next.js Authentication - AuthJS / NextAuth for Role-Based Security

Role Based Authorization 0:23:56

Role Based Authorization with Next Auth + Google Provider + Prisma in NEXT.JS

Managing JWT Authentication 0:04:02

Managing JWT Authentication with Cookies in React JS | MERN Stack E-Commerce Project | #14

Next.js Auth with 0:23:58

Next.js Auth with Roles & Permissions (RBAC / Authorization) - Protect your app the professional...

Next.js 14 Authentication 0:09:50

Next.js 14 Authentication : Role Based Authorization with AuthJS v5 | EzyCode

Next.js 13 Role 0:17:04

Next.js 13 Role Based Authorization with Middleware & NextAuth

Next.js: Authentication (Best 0:12:14

Next.js: Authentication (Best Practices for Server Components, Actions, Middleware)

Role-based Access Control 0:09:35

Role-based Access Control (RBAC) User Authorization in Next.js

Next Auth V5 8:00:57

Next Auth V5 - Advanced Guide (2024)

Fullstack Authentication & 0:48:16

Fullstack Authentication & Authorization in Next.js using NextAuth V5 (Auth.js), Zod, Shadcn UI

Building Role-Based Authentication 0:06:00

Building Role-Based Authentication with Next-Auth (Auth.js) v5, Drizzle ORM, and Next.js 14

Next-Auth V5 Tutorial 1:45:29

Next-Auth V5 Tutorial (OAuth, Email, Server Actions, Server-Side Auth, Client-Side Auth, Roles)

Role-Based Authentication in 0:26:31

Role-Based Authentication in React (Complete Tutorial)

Next.js App Router 0:11:31

Next.js App Router Authentication (Sessions, Cookies, JWTs)

Authorization Using Roles 0:00:26

Authorization Using Roles and Permissions - Which one wins? #shorts

Next.js 14 Authentication 0:39:49

Next.js 14 Authentication (Kinde Auth, Server Actions, Roles & Permissions)

How I implement 0:12:19

How I implement role based authorization to my T3 Stack application

Authorization and page 0:09:33

Authorization and page protection using role permissions | Next.js Fullstack TypeScript Course

Комментарии
Автор

Good stuff. Thanks. I know this is a simple tutorial, but if you ever edit this video, I recommend stressing the importance of not storing plaintext passwords in the database. Hashing them before storage and always querying with a hashed password is a much more secure practice. Thanks again!

jackfrosch
Автор

Thank you for doing these nextjs next-auth videos with your own API. Not much content on this stuff! Especially the roles! I only wish you had refresh tokens as well 🤣

stevemcqueen
Автор

Thanks for such a good video, it was exactly what I need. It would be cool, if you make video about refresh token in nextjs, I doesn't see much stuff about it

sprng
Автор

Dude ! you're live saver. Thanks a lots

yuhiahtyun
Автор

Awesome! Thanks for your helpful tutorial :)

tunghoang
Автор

Greetings, thanks for the video... I speak little English, I use a translator... but I understand everything... you explain very well

You could make one more video with next + next-auth + prisma + mongodb and that the keys are encrypted

P, D; and as a BONUS you put good practices to avoid CSRF attacks I would appreciate it... many blessings

att. Jose Grillo from Venezuela

español
saludos gracias por el hablo poco ingles uso traductor.... pero voy entendiendo todo... explicas muy bien

podrias hacer un video mas con next + next-auth + prisma + mongodb y que las claves esten encriptadas

att. Jose Grillo desde Venezuela

Grishopping
Автор

Thanks very much!!! There is a problem. When adding withAuth(...) in middleware.ts file, "export async function middleware(req: NextRequest)" function in middleware.ts will not be executed which is used for logging http request, seems they conflict with each other. It works fine when removing withAuth(...) Do you know any solution for this? Thank you.

UAng-rokt
Автор

Fantastic tutorial👌👌👌. My only question is once you send the access token the backend, what is it doing with it? Is it searching the database for a user with that token and see if it exists?

riccohen
Автор

Hi, what should i do if i no want to show the callbackURL?

meaninglesspain
Автор

I would suggest to redirect to a 404 page if a simple USER try to connect to the ADMIN PAGE, instead of showing an unauthorization message.

mediacreatif
Автор

Is there a way we can send a set of URL's that only admin can access?

SagarKumar-dbxy
Автор

What if the access token expires? How do we handle that case? Suppose you try to access a user's post, but the token stored in the session has expired. We can handle that without interrupting the user flow.

When the access token expires and the user tries to access their post, we already know that a refresh token is stored in cookies, which is HTTP-only. The server sets this token on login for a long time period. We can use the refresh token to get a new access token without the user having to log in again.

bnejgop
Автор

Can. you do it without TS? i can't find any documentation for doing it without TS

cryptobeaver
Автор

How do i write if i use multi language en/admin

ICOReviewtoken
Автор

i cant able to run this on my end, coz the db repo is lack of details on how to setup

asrii
Автор

Hello!,
I'm having trouble adding those additional fields to the session. I have added types/next-auth.d.ts as you did { user: User } but I only get {name, email, image} as before

and my User type contains all fields.
in the session callback, session.user also contains all the fields as per User type, and I return the session from here.

What'd I be doing wrong; Thanks

raymondmichael
Автор

Wonderful tutorial! Just one question...

Is it possible to override the token that next-auth generates, with a token that comes from the backend? I did a solution and from what i saw, it has the same result as your repo:

One token is stored in the cookies
One token is obtained by the api

Is this okay in terms of good practices?

matheusdesousamenezes
Автор

In Next Video:- Verify token from server and redirect user if he is already logged in

Vicky
Автор

I'm trying to redirect an ADMIN to the ADMIN PAGE. If an ADMIN is connected, he is redirected to the ADMIN PAGE. If it's an USER, he is redirected to the USER PROFILE PAGE.

I think I have to change the callbackUrl from the signIn function in the LoginPage. The callbackUrl has to be different according to the User Role. But how can I retrieve the User Role in this LoginPage ?

Thanks.

mediacreatif
Автор

Is there any way I have have Role Based Access Control with GoogleProvider ?

RohitSaini-gocr