@checkstack/auth-backend 0.4.12 → 0.4.14

package/CHANGELOG.md

@@ -1,5 +1,33 @@
 # @checkstack/auth-backend
 
+## 0.4.14
+
+### Patch Changes
+
+- Updated dependencies [23c80bc]
+  - @checkstack/backend-api@0.10.0
+  - @checkstack/command-backend@0.1.15
+
+## 0.4.13
+
+### Patch Changes
+
+- e01945b: Reduce excessive /api/auth/get-session requests
+
+  - Enable better-auth's `cookieCache` on the server (5-minute TTL) so repeated session
+    checks verify a signed cookie instead of querying the database. Compatible with
+    horizontal scaling since validation uses the shared `BETTER_AUTH_SECRET`.
+
+  - Introduce a `SessionProvider` React context that fetches the session exactly once
+    at the top of the component tree. All 7+ components that previously called
+    `useSession()` independently now read from this shared context — eliminating
+    duplicate HTTP requests on every page load.
+
+  - Remove the `useAuthClient()` hook which created per-component better-auth client
+    instances via `useMemo`, causing separate nanostore atoms and independent fetches.
+    All imperative usages (signIn, signUp, resetPassword, etc.) now use the singleton
+    `getAuthClientLazy()` instead.
+
 ## 0.4.12
 
 ### Patch Changes

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@checkstack/auth-backend",
-  "version": "0.4.12",
+  "version": "0.4.14",
   "type": "module",
   "main": "src/index.ts",
   "checkstack": {

package/src/index.ts

@@ -639,6 +639,12 @@ export default createBackendPlugin({
               provider: "pg",
               schema: { ...schema },
             }),
+            session: {
+              cookieCache: {
+                enabled: true,
+                maxAge: 5 * 60, // 5 minutes — session verified from signed cookie, not DB
+              },
+            },
             emailAndPassword: {
               enabled: credentialEnabled,
               autoSignIn: true, // Log in user immediately after successful registration