npm - @lobehub/lobehub - Versions diffs - 2.0.0-next.123 → 2.0.0-next.125 - Mend

@lobehub/lobehub 2.0.0-next.123 → 2.0.0-next.125

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (126) hide show

package/.cursor/rules/db-migrations.mdc +16 -1
package/.cursor/rules/project-introduce.mdc +1 -1
package/.cursor/rules/project-structure.mdc +20 -2
package/.env.example +148 -65
package/.env.example.development +6 -8
package/AGENTS.md +1 -3
package/CHANGELOG.md +51 -0
package/Dockerfile +6 -6
package/GEMINI.md +63 -0
package/README.md +8 -8
package/README.zh-CN.md +8 -8
package/changelog/v1.json +18 -0
package/docs/development/database-schema.dbml +38 -0
package/docs/self-hosting/advanced/auth.mdx +75 -2
package/docs/self-hosting/advanced/auth.zh-CN.mdx +75 -2
package/docs/self-hosting/environment-variables/auth.mdx +187 -1
package/docs/self-hosting/environment-variables/auth.zh-CN.mdx +187 -1
package/locales/en-US/auth.json +93 -0
package/locales/zh-CN/auth.json +107 -1
package/package.json +5 -2
package/packages/const/src/auth.ts +2 -1
package/packages/database/migrations/0048_add_editor_data.sql +1 -0
package/packages/database/migrations/0049_better_auth.sql +49 -0
package/packages/database/migrations/meta/0048_snapshot.json +7913 -0
package/packages/database/migrations/meta/0049_snapshot.json +8151 -0
package/packages/database/migrations/meta/_journal.json +14 -0
package/packages/database/src/core/migrations.json +19 -0
package/packages/database/src/index.ts +1 -0
package/packages/database/src/models/__tests__/session.test.ts +1 -2
package/packages/database/src/models/user.ts +9 -8
package/packages/database/src/repositories/tableViewer/index.test.ts +2 -2
package/packages/database/src/schemas/agent.ts +1 -0
package/packages/database/src/schemas/betterAuth.ts +63 -0
package/packages/database/src/schemas/index.ts +1 -0
package/packages/database/src/schemas/ragEvals.ts +1 -2
package/packages/database/src/schemas/user.ts +3 -2
package/packages/database/src/server/models/__tests__/user.test.ts +1 -4
package/packages/types/src/user/preference.ts +11 -0
package/packages/utils/src/server/__tests__/auth.test.ts +52 -0
package/packages/utils/src/server/auth.ts +18 -1
package/src/app/(backend)/api/auth/[...all]/route.ts +19 -0
package/src/app/(backend)/api/auth/check-user/route.ts +62 -0
package/src/app/(backend)/middleware/auth/index.ts +14 -0
package/src/app/(backend)/middleware/auth/utils.test.ts +16 -0
package/src/app/(backend)/middleware/auth/utils.ts +13 -10
package/src/app/(backend)/webapi/chat/[provider]/route.test.ts +1 -0
package/src/app/[variants]/(auth)/reset-password/layout.tsx +12 -0
package/src/app/[variants]/(auth)/reset-password/page.tsx +209 -0
package/src/app/[variants]/(auth)/signin/layout.tsx +12 -0
package/src/app/[variants]/(auth)/signin/page.tsx +448 -0
package/src/app/[variants]/(auth)/signup/[[...signup]]/BetterAuthSignUpForm.tsx +192 -0
package/src/app/[variants]/(auth)/signup/[[...signup]]/page.tsx +31 -6
package/src/app/[variants]/(auth)/verify-email/layout.tsx +12 -0
package/src/app/[variants]/(auth)/verify-email/page.tsx +164 -0
package/src/app/[variants]/(main)/(mobile)/me/(home)/__tests__/UserBanner.test.tsx +12 -10
package/src/app/[variants]/(main)/(mobile)/me/(home)/__tests__/useCategory.test.tsx +13 -11
package/src/app/[variants]/(main)/chat/components/topic/features/Topic/TopicListContent/TopicItem/TopicContent.tsx +15 -8
package/src/app/[variants]/(main)/chat/components/topic/features/Topic/TopicListContent/TopicItem/index.tsx +27 -30
package/src/app/[variants]/(main)/profile/(home)/Client.tsx +306 -52
package/src/app/[variants]/(main)/profile/(home)/features/SSOProvidersList/index.tsx +89 -47
package/src/auth.ts +118 -0
package/src/components/NextAuth/AuthIcons.tsx +3 -1
package/src/envs/auth.ts +260 -13
package/src/envs/email.ts +37 -0
package/src/features/AgentSetting/AgentPlugin/index.tsx +6 -2
package/src/features/User/UserPanel/PanelContent.tsx +6 -5
package/src/features/User/__tests__/PanelContent.test.tsx +15 -6
package/src/features/User/__tests__/UserAvatar.test.tsx +17 -6
package/src/features/User/__tests__/useMenu.test.tsx +14 -12
package/src/layout/AuthProvider/BetterAuth/UserUpdater.tsx +51 -0
package/src/layout/AuthProvider/BetterAuth/index.tsx +14 -0
package/src/layout/AuthProvider/index.tsx +3 -0
package/src/layout/GlobalProvider/StoreInitialization.tsx +3 -3
package/src/libs/better-auth/auth-client.ts +34 -0
package/src/libs/better-auth/constants.ts +13 -0
package/src/libs/better-auth/email-templates/index.ts +3 -0
package/src/libs/better-auth/email-templates/magic-link.ts +98 -0
package/src/libs/better-auth/email-templates/reset-password.ts +91 -0
package/src/libs/better-auth/email-templates/verification.ts +108 -0
package/src/libs/better-auth/sso/helpers.ts +61 -0
package/src/libs/better-auth/sso/index.ts +113 -0
package/src/libs/better-auth/sso/providers/auth0.ts +33 -0
package/src/libs/better-auth/sso/providers/authelia.ts +35 -0
package/src/libs/better-auth/sso/providers/authentik.ts +35 -0
package/src/libs/better-auth/sso/providers/casdoor.ts +48 -0
package/src/libs/better-auth/sso/providers/cloudflare-zero-trust.ts +41 -0
package/src/libs/better-auth/sso/providers/cognito.ts +45 -0
package/src/libs/better-auth/sso/providers/feishu.ts +181 -0
package/src/libs/better-auth/sso/providers/generic-oidc.ts +44 -0
package/src/libs/better-auth/sso/providers/github.ts +30 -0
package/src/libs/better-auth/sso/providers/google.ts +30 -0
package/src/libs/better-auth/sso/providers/keycloak.ts +35 -0
package/src/libs/better-auth/sso/providers/logto.ts +38 -0
package/src/libs/better-auth/sso/providers/microsoft.ts +65 -0
package/src/libs/better-auth/sso/providers/okta.ts +37 -0
package/src/libs/better-auth/sso/providers/wechat.ts +140 -0
package/src/libs/better-auth/sso/providers/zitadel.ts +54 -0
package/src/libs/better-auth/sso/types.ts +25 -0
package/src/libs/better-auth/utils/client.ts +1 -0
package/src/libs/better-auth/utils/common.ts +20 -0
package/src/libs/better-auth/utils/server.test.ts +61 -0
package/src/libs/better-auth/utils/server.ts +18 -0
package/src/libs/trpc/lambda/context.test.ts +116 -0
package/src/libs/trpc/lambda/context.ts +27 -0
package/src/libs/trpc/middleware/userAuth.ts +4 -2
package/src/locales/default/auth.ts +114 -1
package/src/proxy.ts +71 -7
package/src/server/globalConfig/index.ts +12 -1
package/src/server/routers/lambda/user.ts +4 -0
package/src/server/services/email/README.md +241 -0
package/src/server/services/email/impls/index.test.ts +39 -0
package/src/server/services/email/impls/index.ts +32 -0
package/src/server/services/email/impls/nodemailer/index.ts +108 -0
package/src/server/services/email/impls/nodemailer/type.ts +31 -0
package/src/server/services/email/impls/type.ts +61 -0
package/src/server/services/email/index.test.ts +144 -0
package/src/server/services/email/index.ts +40 -0
package/src/services/user/index.test.ts +162 -2
package/src/services/user/index.ts +6 -3
package/src/store/aiInfra/slices/aiProvider/action.ts +4 -4
package/src/store/user/slices/auth/action.test.ts +213 -16
package/src/store/user/slices/auth/action.ts +86 -1
package/src/store/user/slices/auth/initialState.ts +13 -2
package/src/store/user/slices/auth/selectors.ts +6 -2
package/src/store/user/slices/common/action.ts +5 -1
package/src/app/(backend)/api/auth/[...nextauth]/route.ts +0 -3

package/src/store/user/slices/auth/action.ts CHANGED Viewed

@@ -1,11 +1,22 @@
+import { SSOProvider } from '@lobechat/types';
 import { StateCreator } from 'zustand/vanilla';
-import { enableAuth, enableClerk, enableNextAuth } from '@/const/auth';
+import { enableAuth, enableBetterAuth, enableClerk, enableNextAuth } from '@/const/auth';
+import { userService } from '@/services/user';
 import type { UserStore } from '../../store';
+interface AuthProvidersData {
+  isEmailPasswordAuth: boolean;
+  providers: SSOProvider[];
+}
 export interface UserAuthAction {
   enableAuth: () => boolean;
+  /**
+   * Fetch auth providers (SSO accounts) for the current user
+   */
+  fetchAuthProviders: () => Promise<void>;
   /**
    * universal logout method
    */
@@ -14,8 +25,40 @@ export interface UserAuthAction {
    * universal login method
    */
   openLogin: () => Promise<void>;
+  /**
+   * Refresh auth providers after link/unlink
+   */
+  refreshAuthProviders: () => Promise<void>;
 }
+const fetchAuthProvidersData = async (): Promise<AuthProvidersData> => {
+  if (enableBetterAuth) {
+    const { accountInfo, listAccounts } = await import('@/libs/better-auth/auth-client');
+    const result = await listAccounts();
+    const accounts = result.data || [];
+    const isEmailPasswordAuth = accounts.some((account) => account.providerId === 'credential');
+    const providers = await Promise.all(
+      accounts
+        .filter((account) => account.providerId !== 'credential')
+        .map(async (account) => {
+          const info = await accountInfo({
+            query: { accountId: account.accountId },
+          });
+          return {
+            email: info.data?.user?.email ?? undefined,
+            provider: account.providerId,
+            providerAccountId: account.accountId,
+          };
+        }),
+    );
+    return { isEmailPasswordAuth, providers };
+  }
+  // Fallback for NextAuth
+  const providers = await userService.getUserSSOProviders();
+  return { isEmailPasswordAuth: false, providers };
+};
 export const createAuthSlice: StateCreator<
   UserStore,
   [['zustand/devtools', never]],
@@ -25,6 +68,18 @@ export const createAuthSlice: StateCreator<
   enableAuth: () => {
     return enableAuth;
   },
+  fetchAuthProviders: async () => {
+    // Skip if already loaded
+    if (get().isLoadedAuthProviders) return;
+    try {
+      const { isEmailPasswordAuth, providers } = await fetchAuthProvidersData();
+      set({ authProviders: providers, isEmailPasswordAuth, isLoadedAuthProviders: true });
+    } catch (error) {
+      console.error('Failed to fetch auth providers:', error);
+      set({ isLoadedAuthProviders: true });
+    }
+  },
   logout: async () => {
     if (enableClerk) {
       get().clerkSignOut?.({ redirectUrl: location.toString() });
@@ -32,6 +87,21 @@ export const createAuthSlice: StateCreator<
       return;
     }
+    if (enableBetterAuth) {
+      const { signOut } = await import('@/libs/better-auth/auth-client');
+      await signOut({
+        fetchOptions: {
+          onSuccess: () => {
+            // Use window.location.href to trigger a full page reload
+            // This ensures all client-side state (React, Zustand, cache) is cleared
+            window.location.href = '/signin';
+          },
+        },
+      });
+      return;
+    }
     if (enableNextAuth) {
       const { signOut } = await import('next-auth/react');
       signOut();
@@ -49,6 +119,13 @@ export const createAuthSlice: StateCreator<
       return;
     }
+    if (enableBetterAuth) {
+      const currentUrl = location.toString();
+      window.location.href = `/signin?callbackUrl=${encodeURIComponent(currentUrl)}`;
+      return;
+    }
     if (enableNextAuth) {
       const { signIn } = await import('next-auth/react');
       // Check if only one provider is available
@@ -60,4 +137,12 @@ export const createAuthSlice: StateCreator<
       signIn();
     }
   },
+  refreshAuthProviders: async () => {
+    try {
+      const { isEmailPasswordAuth, providers } = await fetchAuthProvidersData();
+      set({ authProviders: providers, isEmailPasswordAuth });
+    } catch (error) {
+      console.error('Failed to refresh auth providers:', error);
+    }
+  },
 });

package/src/store/user/slices/auth/initialState.ts CHANGED Viewed

@@ -6,17 +6,25 @@ import {
   UserProfileProps,
   UserResource,
 } from '@clerk/types';
+import { SSOProvider } from '@lobechat/types';
+import { enableClerk } from '@/const/auth';
 import { LobeUser } from '@/types/user';
 export interface UserAuthState {
+  authProviders?: SSOProvider[];
   clerkOpenUserProfile?: (props?: UserProfileProps) => void;
   clerkSession?: SignedInSessionResource;
   clerkSignIn?: (props?: SignInProps) => void;
   clerkSignOut?: SignOut;
   clerkUser?: UserResource;
+  /**
+   * Whether user registered with email/password (credential login)
+   */
+  isEmailPasswordAuth?: boolean;
   isLoaded?: boolean;
+  isLoadedAuthProviders?: boolean;
   isSignedIn?: boolean;
   nextSession?: Session;
@@ -25,4 +33,7 @@ export interface UserAuthState {
   user?: LobeUser;
 }
-export const initialAuthState: UserAuthState = {};
+export const initialAuthState: UserAuthState = {
+  // Clerk doesn't need to fetch auth providers
+  isLoadedAuthProviders: enableClerk ? true : undefined,
+};

package/src/store/user/slices/auth/selectors.ts CHANGED Viewed

@@ -1,8 +1,8 @@
 import { BRANDING_NAME, isDesktop } from '@lobechat/const';
-import { LobeUser } from '@lobechat/types';
+import { LobeUser, SSOProvider } from '@lobechat/types';
 import { t } from 'i18next';
-import { enableAuth, enableClerk, enableNextAuth } from '@/const/auth';
+import { enableAuth, enableBetterAuth, enableClerk, enableNextAuth } from '@/const/auth';
 import type { UserStore } from '@/store/user';
 const DEFAULT_USERNAME = BRANDING_NAME;
@@ -56,9 +56,13 @@ const isLogin = (s: UserStore) => {
 };
 export const authSelectors = {
+  authProviders: (s: UserStore): SSOProvider[] => s.authProviders || [],
+  isEmailPasswordAuth: (s: UserStore) => s.isEmailPasswordAuth ?? false,
   isLoaded: (s: UserStore) => s.isLoaded,
+  isLoadedAuthProviders: (s: UserStore) => s.isLoadedAuthProviders ?? false,
   isLogin,
   isLoginWithAuth: (s: UserStore) => s.isSignedIn,
+  isLoginWithBetterAuth: (s: UserStore): boolean => (s.isSignedIn && enableBetterAuth) || false,
   isLoginWithClerk: (s: UserStore): boolean => (s.isSignedIn && enableClerk) || false,
   isLoginWithNextAuth: (s: UserStore): boolean => (s.isSignedIn && !!enableNextAuth) || false,
 };

package/src/store/user/slices/common/action.ts CHANGED Viewed

@@ -24,6 +24,7 @@ const GET_USER_STATE_KEY = 'initUserState';
 export interface CommonAction {
   refreshUserState: () => Promise<void>;
   updateAvatar: (avatar: string) => Promise<void>;
+  updateFullName: (fullName: string) => Promise<void>;
   updateKeyVaultConfig: (provider: string, config: any) => Promise<void>;
   useCheckTrace: (shouldFetch: boolean) => SWRResponse;
   useInitUserState: (
@@ -46,9 +47,12 @@ export const createCommonSlice: StateCreator<
     await mutate(GET_USER_STATE_KEY);
   },
   updateAvatar: async (avatar) => {
-    // 1. 更新服务端/数据库中的头像
     await userService.updateAvatar(avatar);
+    await get().refreshUserState();
+  },
+  updateFullName: async (fullName) => {
+    await userService.updateFullName(fullName);
     await get().refreshUserState();
   },

package/src/app/(backend)/api/auth/[...nextauth]/route.ts DELETED Viewed

@@ -1,3 +0,0 @@
-import NextAuthNode from '@/libs/next-auth';
-export const { GET, POST } = NextAuthNode.handlers;