Spaces:

00Boobs00
/

anycoder-4b8d5e0c

Runtime error

App Files Files Community

00Boobs00 commited on Jan 20

Commit

7ee9dc8

verified ·

1 Parent(s): 68d813f

Upload pages/api/auth/[...nextauth].js with huggingface_hub

Browse files

Files changed (1) hide show

pages/api/auth/[...nextauth].js +41 -16

pages/api/auth/[...nextauth].js CHANGED Viewed

@@ -1,31 +1,56 @@
 import NextAuth from 'next-auth';
-import GoogleProvider from 'next-auth/providers/google';
-import GitHubProvider from 'next-auth/providers/github';
 export const authOptions = {
   providers: [
-    GoogleProvider({
-      clientId: process.env.GOOGLE_CLIENT_ID || 'mock-google-id',
-      clientSecret: process.env.GOOGLE_CLIENT_SECRET || 'mock-google-secret',
-    }),
-    GitHubProvider({
-      clientId: process.env.GITHUB_ID || 'mock-github-id',
-      clientSecret: process.env.GITHUB_SECRET || 'mock-github-secret',
-    }),
   ],
   pages: {
-    signIn: '/auth/signin',
-    error: '/auth/error',
   },
   callbacks: {
-    async jwt({ token, account }) {
-      if (account) {
-        token.accessToken = account.access_token;
       }
       return token;
     },
     async session({ session, token }) {
-      session.accessToken = token.accessToken;
       return session;
     },
   },

 import NextAuth from 'next-auth';
+import CredentialsProvider from 'next-auth/providers/credentials';
 export const authOptions = {
   providers: [
+    CredentialsProvider({
+      name: 'Developer Secure Access',
+      credentials: {
+        email: { label: "Email", type: "email" },
+        password: { label: "Password", type: "password" }
+      },
+      async authorize(credentials) {
+        // Secure check against environment variables
+        // This ensures only the developer with access to deployment secrets can log in.
+        const adminEmail = process.env.ADMIN_EMAIL;
+        const adminPassword = process.env.ADMIN_PASSWORD;
+        if (!adminEmail || !adminPassword) {
+          console.error("Security Error: ADMIN_EMAIL or ADMIN_PASSWORD not set in environment.");
+          return null;
+        }
+        if (credentials.email === adminEmail && credentials.password === adminPassword) {
+          return {
+            id: '1',
+            name: 'Lead Developer',
+            email: adminEmail,
+          };
+        }
+        return null;
+      }
+    })
   ],
   pages: {
+    signIn: '/', // Use home page for login to keep it contained
+    error: '/', // Show errors on home page
+  },
+  session: {
+    strategy: 'jwt',
+    maxAge: 24 * 60 * 60, // 24 hours
   },
   callbacks: {
+    async jwt({ token, user }) {
+      if (user) {
+        token.id = user.id;
       }
       return token;
     },
     async session({ session, token }) {
+      if (session.user) {
+        session.user.id = token.id;
+      }
       return session;
     },
   },