Skip to content

Instantly share code, notes, and snippets.

Last active October 28, 2023 22:59
Show Gist options
  • Save andresgutgon/dcbf135f890450f0a03eeb9b7891b268 to your computer and use it in GitHub Desktop.
Save andresgutgon/dcbf135f890450f0a03eeb9b7891b268 to your computer and use it in GitHub Desktop.
// db/schema/auth.ts
import {
} from "drizzle-orm/mysql-core"
import type { AdapterAccount } from "@auth/core/adapters"
export const users = mysqlTable("users", {
id: varchar("id", { length: 255 }).notNull().primaryKey(),
name: varchar("name", { length: 255 }),
email: varchar("email", { length: 255 }).notNull(),
emailVerified: timestamp("emailVerified", { mode: "date" }),
image: varchar("image", { length: 255 }),
export const accounts = mysqlTable(
userId: varchar("userId", { length: 255 }).notNull(),
type: varchar("type", { length: 255 }).$type<AdapterAccount["type"]>().notNull(),
provider: varchar("provider", { length: 255 }).notNull(),
providerAccountId: varchar("providerAccountId", { length: 255 }).notNull(),
refresh_token: varchar("refresh_token", { length: 255 }),
refresh_token_expires_in: int("refresh_token_expires_in"),
access_token: varchar("access_token", { length: 255 }),
expires_at: int("expires_at"),
token_type: varchar("token_type", { length: 255 }),
scope: varchar("scope", { length: 255 }),
id_token: text("id_token"),
session_state: text("session_state"),
(account) => ({
compoundKey: primaryKey(account.provider, account.providerAccountId),
export const sessions = mysqlTable("sessions", {
sessionToken: varchar("sessionToken", { length: 255 }).notNull().primaryKey(),
userId: varchar("userId", { length: 255 }).notNull(),
expires: timestamp("expires", { mode: "date" }).notNull(),
export const verificationTokens = mysqlTable(
identifier: varchar("identifier", { length: 255 }).notNull(),
token: varchar("token", { length: 255 }).notNull(),
expires: timestamp("expires", { mode: "date" }).notNull(),
(vt) => ({
compoundKey: primaryKey(vt.identifier, vt.token),
// lib/auth/config.ts
import { type GetServerSidePropsContext } from "next"
import {
type NextAuthOptions,
type DefaultSession,
} from "next-auth"
import GoogleProvider from "next-auth/providers/google"
import { db } from '@/db'
import { PlanetScaleAdapter } from "@/lib/auth/planetScaleAdapter"
import { Adapter } from "next-auth/adapters"
import { UserSession } from "@/lib/auth"
declare module "next-auth" {
interface Session extends DefaultSession {
user: UserSession
export const authOptions: NextAuthOptions = {
secret: process.env.NEXTAUTH_SECRET,
callbacks: {
session({ session, user }) {
if (session.user) { =
return session
adapter: PlanetScaleAdapter(db) as Adapter,
providers: [
clientId: process.env.GOOGLE_CLIENT_ID,
clientSecret: process.env.GOOGLE_CLIENT_SECRET,
export const getServerAuthSession = (ctx: {
req: GetServerSidePropsContext["req"]
res: GetServerSidePropsContext["res"]
}) => {
return getServerSession(ctx.req, ctx.res, authOptions)
// db/index.ts
import { drizzle } from "drizzle-orm/planetscale-serverless"
import { connect } from "@planetscale/database"
const connection = connect({
host: process.env.DATABASE_HOST,
username: process.env.DATABASE_USERNAME,
password: process.env.DATABASE_PASSWORD
export const db = drizzle(connection)
export type DbClient = typeof db
// lib/auth/planetScaleAdapter
import { and, eq } from "drizzle-orm"
import crypto from 'node:crypto'
import { users, accounts, sessions, verificationTokens } from '@/db/schema/auth'
import { DbClient } from '@/db'
import type { Adapter } from "@auth/core/adapters"
export const defaultSchema = { users, accounts, sessions, verificationTokens }
export type DefaultSchema = typeof defaultSchema
interface CustomSchema extends DefaultSchema { }
export function PlanetScaleAdapter(
client: DbClient,
_schema?: Partial<CustomSchema>
): Adapter {
return {
createUser: async (data) => {
const id = crypto.randomUUID()
await client.insert(users).values({, id })
return client
.where(eq(, id))
.then((res) => res[0])
getUser: async (data) => {
const user = await client
.where(eq(, data))
.then((res) => res[0]) ?? null
return user
getUserByEmail: async (data) => {
const email = await client
.where(eq(, data))
.then((res) => res[0]) ?? null
return email
createSession: async (data) => {
await client.insert(sessions).values(data)
const session = await client
.where(eq(sessions.sessionToken, data.sessionToken))
.then((res) => res[0])
return session
getSessionAndUser: async (data) => {
const sessionAndUser = await client
session: sessions,
user: users,
.where(eq(sessions.sessionToken, data))
.innerJoin(users, eq(, sessions.userId))
.then((res) => res[0]) ?? null
return sessionAndUser
updateUser: async (data) => {
if (! {
throw new Error("No user id.")
await client
const user = await client
.then((res) => res[0])
return user
updateSession: async (data) => {
await client
.where(eq(sessions.sessionToken, data.sessionToken))
const session = await client
.where(eq(sessions.sessionToken, data.sessionToken))
.then((res) => res[0])
return session
linkAccount: async (rawAccount) => {
const account = await client.insert(accounts).values(rawAccount).then((res) => res.rows[0])
getUserByAccount: async (account) => {
const dbAccount = await client
eq(accounts.providerAccountId, account.providerAccountId),
eq(accounts.provider, account.provider)
.leftJoin(users, eq(accounts.userId,
.then((res) => res[0])
return dbAccount?.users
deleteSession: async (sessionToken) => {
await client
.where(eq(sessions.sessionToken, sessionToken))
createVerificationToken: async (token) => {
await client.insert(verificationTokens).values(token)
return client
.where(eq(verificationTokens.identifier, token.identifier))
.then((res) => res[0])
useVerificationToken: async (token) => {
try {
const deletedToken =
(await client
eq(verificationTokens.identifier, token.identifier),
eq(verificationTokens.token, token.token)
.then((res) => res[0])) ?? null
await client
eq(verificationTokens.identifier, token.identifier),
eq(verificationTokens.token, token.token)
return deletedToken
} catch (err) {
throw new Error("No verification token found.")
deleteUser: async (id) => {
await client
.where(eq(, id))
.then((res) => res.rows[0])
unlinkAccount: async (account) => {
await client
eq(accounts.providerAccountId, account.providerAccountId),
eq(accounts.provider, account.provider)
return undefined
Copy link

Is it a typo on line 110 in the lib/auth/planetScaleAdapter.ts? It should only return the single user, no?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment