0.13.17 • Published 5 months ago

@descope/nextjs-sdk v0.13.17

Weekly downloads
-
License
MIT
Repository
github
Last release
5 months ago

Descope SDK for Next.js

The Descope SDK for Next.js provides convenient access to the Descope for an application written on top of Next.js. You can read more on the Descope Website.

This SDK uses under the hood the Descope React SDK and Descope Node SDK Refer to the Descope React SDK and Descope Node SDK for more details.

Requirements

Installing the SDK

Install the package with:

npm i --save @descope/nextjs-sdk

Usage

This section contains guides for App router and Pages router. For Pages router, see the Pages Router section.

App Router

Wrap your app layout with Auth Provider

// src/app/layout.tsx

import { AuthProvider } from '@descope/nextjs-sdk';

export default function RootLayout({
	children
}: {
	children: React.ReactNode
}) {
	return (
		<AuthProvider projectId="your-descope-project-id">
			<html lang="en">
				<body>{children}</body>
			</html>
		</AuthProvider>
	);
}

Note: AuthProvider uses sessionTokenViaCookie={{ sameSite: 'Lax' }} by default, in order that the AuthMiddleware will work out of the box. The session token cookie is set to SameSite=Lax; Secure; by default. If you need to customize this, you can set sessionTokenViaCookie={{sameSite: 'Strict'}} (if you pass only sameSite, secure will be set to true by default).

Use Descope to render Flow

You can use default flows or provide flow id directly to the Descope component

// Login page, e.g. src/app/sign-in.tsx
import { Descope } from '@descope/nextjs-sdk';
// you can choose flow to run from the following without `flowId` instead
// import { SignInFlow, SignUpFlow, SignUpOrInFlow } from '@descope/nextjs-sdk'

const Page = () => {
	return (
		<Descope
			flowId="sign-up-or-in"
			onSuccess={(e) => console.log('Logged in!')}
			onError={(e) => console.log('Could not logged in!')}
			redirectAfterSuccess="/"
			// redirectAfterError="/error-page"
		/>
	);
};

Refer to the Descope React SDK Section for a list of available props.

Note: Descope is a client component. if the component that renders it is a server component, you cannot pass onSuccess/onError/errorTransformer/logger props because they are not serializable. To redirect the user after the flow is completed, use the redirectAfterSuccess and redirectAfterError props.

Client Side Usage

Use the useDescope, useSession and useUser hooks in your components in order to get authentication state, user details and utilities

This can be helpful to implement application-specific logic. Examples:

  • Render different components if current session is authenticated
  • Render user's content
  • Logout button

Note: these hooks should be used in a client component only (For example, component with use client notation).

'use client';
import { useDescope, useSession, useUser } from '@descope/nextjs-sdk/client';
import { useCallback } from 'react';

const App = () => {
	// NOTE - `useDescope`, `useSession`, `useUser` should be used inside `AuthProvider` context,
	// and will throw an exception if this requirement is not met
	// useSession retrieves authentication state, session loading status, and session token
	const { isAuthenticated, isSessionLoading, sessionToken } = useSession();
	// useUser retrieves the logged in user information
	const { user } = useUser();
	// useDescope retrieves Descope SDK for further operations related to authentication
	// such as logout
	const sdk = useDescope();

	if (isSessionLoading || isUserLoading) {
		return <p>Loading...</p>;
	}

	const handleLogout = useCallback(() => {
		sdk.logout();
	}, [sdk]);

	if (isAuthenticated) {
		return (
			<>
				<p>Hello {user.name}</p>
				<button onClick={handleLogout}>Logout</button>
			</>
		);
	}

	return <p>You are not logged in</p>;
};

Server Side Usage

Require authentication for application (Middleware)

You can use Next.js Middleware to require authentication for a page/route or a group of pages/routes.

Descope SDK provides a middleware function that can be used to require authentication for a page/route or a group of pages/routes.

// src/middleware.ts
import { authMiddleware } from '@descope/nextjs-sdk/server'

export default authMiddleware({
	// The Descope project ID to use for authentication
	// Defaults to process.env.NEXT_PUBLIC_DESCOPE_PROJECT_ID
	projectId: 'your-descope-project-id',

	// The URL to redirect to if the user is not authenticated
	// Defaults to process.env.SIGN_IN_ROUTE or '/sign-in' if not provided
	// NOTE: In case it contains query parameters that exist in the original URL, they will override the original query parameters. e.g. if the original URL is /page?param1=1&param2=2 and the redirect URL is /sign-in?param1=3, the final redirect URL will be /sign-in?param1=3&param2=2
	redirectUrl?: string,

	// These are the public and private routes in your app. You can also use wildcards (e.g. /api/*) with routes as well in these definitions.
	// Read more about how to use these below.
	publicRoutes?: string[],
	privateRoutes?: string[]
	// If you having privateRoutes and publicRoutes defined at the same time, privateRoutes will be ignored.

  // Optional: log level for the middleware
  // Defaults to 'info'
  // logLevel: 'debug' | 'info' | 'warn' | 'error'
})

export const config = {
	matcher: ['/((?!.+\\.[\\w]+$|_next).*)', '/', '/(api|trpc)(.*)']
}
Public and Private Route Definitions
  • All routes are private by default.
  • publicRoutes: Use this to specify which routes do not require authentication. If specified, only these routes and the default public routes will be public.
  • privateRoutes: Use this to specify which routes require authentication. If specified, only these routes will be private, and all other routes will be public.
  • Conflict Handling: If both publicRoutes and privateRoutes are provided, privateRoutes will be ignored, and a warning will be logged.

This setup ensures that you can clearly define which routes in your application require authentication and which do not, while providing a mechanism to handle potential misconfigurations gracefully.

Public Routes
  • Description: An array of public routes that do not require authentication.
  • Configuration: Use publicRoutes to specify routes that don't require authentication.
  • Additional Defaults: In addition to the routes you specify, the following default public routes are included:
    • process.env.SIGN_IN_ROUTE or /sign-in if not provided
    • process.env.SIGN_UP_ROUTE or /sign-up if not provided
  • Example:
    const options = {
    	publicRoutes: ['/home', '/about']
    };
Private Routes
  • Description: An array of private routes that require authentication.
  • Configuration: Use privateRoutes to specify routes that require authentication. All other routes will be considered public.
  • Conflict Handling: If both publicRoutes and privateRoutes are defined at the same time, privateRoutes will be ignored, and a warning will be logged.
  • Example:
    const options = {
    	privateRoutes: ['/dashboard', '/profile']
    };
Read session information in server side

use the session() helper to read session information in Server Components and Route handlers.

Note: While using authMiddleware is still recommended for session management (because it validates the session only once), session() can function without it. If authMiddleware does not set a session, session() will attempt to retrieve the session token from cookies, then parse and validate it.

Server Component:

// src/app/page.tsx

import { session } from '@descope/nextjs-sdk/server';

async function Page() {
	const sessionRes = await session();
	if (!sessionRes) {
		// ...
	}
	// Use the session jwt or parsed token
	const { jwt, token } = sessionRes;
}

Route handler:

// src/pages/api/routes.ts
export async function GET() {
	const currSession = await session();
	if (!currSession) {
		// ...
	}

	// Use the session jwt or parsed token
	const { jwt, token } = currSession;
}

The session() function uses Next.js's cookies() and headers() functions to retrieve the session token. If you are using Next.js Version 13, you can use the getSession(req) instead.

import { getSession } from '@descope/nextjs-sdk/server';

export async function GET(req) {
	const currSession = await getSession(req);

	// ...
}
Optional Parameters

If the middleware did not set a session, The session() function will attempt to retrieve the session token from cookies and validates it, this requires the project ID to be either set in the environment variables or passed as a parameter to the function. You can also pass the log level to the function (defaults to 'info').

session({
  projectId?: string;
  baseUrl?: string;
  logLevel?: 'debug' | 'info' | 'warn' | 'error'
})
  • projectId: The Descope Project ID. If not provided, the function will fall back to NEXT_PUBLIC_DESCOPE_PROJECT_ID from the environment variables.
  • baseUrl: The Descope API base URL.

This allows developers to use session() even if the project ID is not set in the environment.

Access Descope SDK in server side

Use createSdk function to create Descope SDK in server side.

Refer to the Descope Node SDK for a list of available functions.

Usage example in Route handler:

// src/pages/api/routes.ts
import { createSdk } from '@descope/nextjs-sdk/server';

const sdk = createSdk({
	// The Descope project ID to use for authentication
	// Defaults to process.env.NEXT_PUBLIC_DESCOPE_PROJECT_ID
	projectId: 'your-descope-project-id',

	// The Descope management key to use for management operations
	// Defaults to process.env.DESCOPE_MANAGEMENT_KEY
	managementKey: 'your-descope-management-key'

	// Optional: Descope API base URL
	// Defaults to process.env.NEXT_PUBLIC_DESCOPE_BASE_URL
	// baseUrl: 'https://...'
});

export async function GET(req) {
	const { searchParams } = new URL(req.url);
	const loginId = searchParams.get('loginId');

	const { ok, data: user } = await sdk.management.user.load(loginId);
	if (!ok) {
		// ...
	}
	// Use the user data ...
}

Pages Router

This section is Working in progress :-) In the meantime, you can see the example in the Pages Router folder.

Widgets

Widgets are components that allow you to expose management features for tenant-based implementation. In certain scenarios, your customers may require the capability to perform managerial actions independently, alleviating the necessity to contact you. Widgets serve as a feature enabling you to delegate these capabilities to your customers in a modular manner.

Important Note:

  • For the user to be able to use the widget, they need to be assigned the Tenant Admin Role.

User Management

The UserManagement widget will let you embed a user table in your site to view and take action.

The widget lets you:

  • Create a new user
  • Edit an existing user
  • Activate / disable an existing user
  • Reset an existing user's password
  • Remove an existing user's passkey
  • Delete an existing user

Note:

  • Custom fields also appear in the table.
Usage
import { UserManagement } from '@descope/nextjs-sdk';
...
  <UserManagement
    widgetId="user-management-widget"
    tenant="tenant-id"
  />

Example: Manage Users

Role Management

The RoleManagement widget will let you embed a role table in your site to view and take action.

The widget lets you:

  • Create a new role
  • Change an existing role's fields
  • Delete an existing role

Note:

  • The Editable field is determined by the user's access to the role - meaning that project-level roles are not editable by tenant level users.
  • You need to pre-define the permissions that the user can use, which are not editable in the widget.
Usage
import { RoleManagement } from '@descope/nextjs-sdk';
...
  <RoleManagement
    widgetId="role-management-widget"
    tenant="tenant-id"
  />

Example: Manage Roles

Access Key Management

The AccessKeyManagement widget will let you embed an access key table in your site to view and take action.

The widget lets you:

  • Create a new access key
  • Activate / deactivate an existing access key
  • Delete an exising access key
Usage
import { AccessKeyManagement } from '@descope/nextjs-sdk';
{
	/* admin view: manage all tenant users' access keys */
}
<AccessKeyManagement
	widgetId="access-key-management-widget"
	tenant="tenant-id"
/>;

{
	/* user view: mange access key for the logged-in tenant's user */
}
<AccessKeyManagement
	widgetId="user-access-key-management-widget"
	tenant="tenant-id"
/>;

Example: Manage Access Keys

Audit Management

The AuditManagement widget will let you embed an audit table in your site.

Usage
import { AuditManagement } from '@descope/nextjs-sdk';
...
  <AuditManagement
    widgetId="audit-management-widget"
    tenant="tenant-id"
  />

Example: Manage Audit

User Profile

The UserProfile widget lets you embed a user profile component in your app and let the logged in user update his profile.

The widget lets you:

  • Update user profile picture
  • Update user personal information
  • Update authentication methods
  • Logout
Usage
import { UserProfile } from '@descope/nextjs-sdk';
...
  <UserProfile
    widgetId="user-profile-widget"
    onLogout={() => {
      // add here you own logout callback
      window.location.href = '/login';
    }}
  />

Example: User Profile

Applications Portal

The ApplicationsPortal lets you embed an applications portal component in your app and allows the logged-in user to open applications they are assigned to.

Usage
import { ApplicationsPortal } from '@descope/nextjs-sdk';
...
  <ApplicationsPortal
    widgetId="applications-portal-widget"
  />

Example: User Profile

Code Example

You can find an example react app in the examples folder. - App Router - Pages Router

Learn More

To learn more please see the Descope Documentation and API reference page.

Contact Us

If you need help you can email Descope Support

License

The Descope SDK for React is licensed for use under the terms and conditions of the MIT license Agreement.

0.0.0-alpha.1

7 months ago

0.7.1

8 months ago

0.7.0

8 months ago

0.12.10

7 months ago

0.12.11

7 months ago

0.12.16

6 months ago

0.12.12

6 months ago

0.12.13

6 months ago

0.12.14

6 months ago

0.12.15

6 months ago

0.10.0

8 months ago

0.8.1

8 months ago

0.8.0

8 months ago

0.5.0

9 months ago

0.5.2

8 months ago

0.5.1

9 months ago

0.6.1

8 months ago

0.6.0

8 months ago

0.13.6

6 months ago

0.13.7

6 months ago

0.13.8

6 months ago

0.13.9

6 months ago

0.13.0

6 months ago

0.13.1

6 months ago

0.13.2

6 months ago

0.13.3

6 months ago

0.13.4

6 months ago

0.13.5

6 months ago

0.3.6

12 months ago

0.3.8

12 months ago

0.3.7

12 months ago

0.4.0

9 months ago

0.3.31

9 months ago

0.3.30

9 months ago

0.3.37

9 months ago

0.3.36

9 months ago

0.3.35

9 months ago

0.3.34

9 months ago

0.3.33

9 months ago

0.3.32

9 months ago

0.3.29

9 months ago

0.11.0

8 months ago

0.11.1

7 months ago

0.11.2

7 months ago

0.11.3

7 months ago

0.11.4

7 months ago

0.11.5

7 months ago

0.11.6

7 months ago

0.3.20

10 months ago

0.13.12

5 months ago

0.13.11

5 months ago

0.13.10

6 months ago

0.3.28

9 months ago

0.3.27

9 months ago

0.3.26

9 months ago

0.3.25

9 months ago

0.3.24

9 months ago

0.3.23

9 months ago

0.3.22

9 months ago

0.3.21

9 months ago

0.3.19

10 months ago

0.3.18

10 months ago

0.13.16

5 months ago

0.9.0

8 months ago

0.13.15

5 months ago

0.13.14

5 months ago

0.13.13

5 months ago

0.13.17

5 months ago

0.3.9

12 months ago

0.3.17

10 months ago

0.3.16

10 months ago

0.3.15

10 months ago

0.3.14

10 months ago

0.3.13

10 months ago

0.3.12

11 months ago

0.3.11

11 months ago

0.3.10

11 months ago

0.12.7

7 months ago

0.12.8

7 months ago

0.12.9

7 months ago

0.12.0

7 months ago

0.12.1

7 months ago

0.12.2

7 months ago

0.12.3

7 months ago

0.12.4

7 months ago

0.12.5

7 months ago

0.12.6

7 months ago

0.3.5

12 months ago

0.3.2

1 year ago

0.3.4

12 months ago

0.3.3

12 months ago

0.3.1

1 year ago

0.3.0

1 year ago

0.2.12

1 year ago

0.2.11

1 year ago

0.2.10

1 year ago

0.2.9

1 year ago

0.2.8

1 year ago

0.2.7

1 year ago

0.2.6

1 year ago

0.2.5

1 year ago

0.2.4

1 year ago

0.2.3

1 year ago

0.1.0

1 year ago

0.0.20

1 year ago

0.0.21

1 year ago

0.0.22

1 year ago

0.0.23

1 year ago

0.0.15

1 year ago

0.0.16

1 year ago

0.0.17

1 year ago

0.0.18

1 year ago

0.0.19

1 year ago

0.0.13

1 year ago

0.0.14

1 year ago

0.2.1

1 year ago

0.2.0

1 year ago

0.2.2

1 year ago

0.0.11

1 year ago

0.0.9

1 year ago

0.0.7

2 years ago

0.0.6

2 years ago

0.0.6-alpha.0

2 years ago

0.0.5

2 years ago

0.0.5-alpha.0

2 years ago

0.0.5-alpha.1

2 years ago

0.0.4

2 years ago

0.0.3-alpha.1

2 years ago

0.0.3-alpha.0

2 years ago

0.0.2

2 years ago

0.0.2-alpha.1

2 years ago