navapbc · sawyerh · Nov 14, 2023 · Nov 14, 2023 · Nov 16, 2023 · Nov 17, 2023
diff --git a/app/.env.local.example b/app/.env.local.example
@@ -0,0 +1,17 @@
+#######################################
+# Authentication
+#######################################
+
+# A random string used for encrypting tokens and verification hashes.
+# Generate its value by running `openssl rand -base64 32`
+# or via  https://generate-secret.vercel.app/32
+NEXTAUTH_SECRET="Replace me"
+
+# The template provides a Cognito authentication example by default. To make it work,
+# you'll need to set these. Using Cognito is not required! See the setup-authentication.md
+# documentation for more details.
+COGNITO_CLIENT_ID=
+COGNITO_CLIENT_SECRET=
+COGNITO_DOMAIN=
+COGNITO_ISSUER=https://cognito-idp.{PUT REGION HERE}.amazonaws.com/{PUT USER POOL ID HERE}
+COGNITO_DOMAIN=https://{PUT SUBDOMAIN HERE}.auth.{PUT REGION HERE}.amazoncognito.com
diff --git a/app/.gitignore b/app/.gitignore
@@ -26,6 +26,7 @@ npm-debug.log*
 
 # local env files
 .env*.local
+!.env.local.example
 
 # vercel
 .vercel

diff --git a/app/next-env.d.ts b/app/next-env.d.ts
@@ -1,5 +1,6 @@
 /// <reference types="next" />
 /// <reference types="next/image-types/global" />
+/// <reference types="next/navigation-types/compat/navigation" />
 
 // NOTE: This file should not be edited
 // see https://nextjs.org/docs/basic-features/typescript for more information.
diff --git a/app/package-lock.json b/app/package-lock.json
diff --git a/app/package.json b/app/package.json
@@ -26,6 +26,7 @@
     "@uswds/uswds": "3.1.0",
     "i18next": "^23.0.0",
     "next": "^14.0.0",
+    "next-auth": "^5.0.0-beta.3",
     "next-i18next": "^14.0.0",
     "react": "^18.2.0",
     "react-dom": "^18.2.0",

diff --git a/app/src/app/api/auth/[...nextauth]/route.ts b/app/src/app/api/auth/[...nextauth]/route.ts
@@ -0,0 +1,7 @@
+/**
+ * @file Behind the scenes, this creates all the relevant OAuth API routes within /api/auth/*
+ * such as GET /api/auth/signin and POST /api/auth/signin/:provider
+ *
+ * @see https://authjs.dev/getting-started/providers/oauth-tutorial
+ */
+export { GET, POST } from "src/auth";
diff --git a/app/src/app/auth/signout/page.tsx b/app/src/app/auth/signout/page.tsx
@@ -0,0 +1,17 @@
+"use client";
+
+import { federateSignOut } from "src/auth";
+
+import { useEffect } from "react";
+
+export default function Page() {
+  /**
+   * Not super sure why this needs to be called on the client-side, but at the
+   * moment the Auth.js signOut method has a dependency on `window`, at a minimum.
+   */
+  useEffect(() => {
+    federateSignOut().catch(console.error);
+  }, []);
+
+  return <div>Signing out...</div>;
+}
diff --git a/app/src/app/layout.tsx b/app/src/app/layout.tsx
@@ -0,0 +1,15 @@
+export const metadata = {
+  title: "Next.js template",
+};
+
+export default function RootLayout({
+  children,
+}: {
+  children: React.ReactNode;
+}) {
+  return (
+    <html lang="en">
+      <body>{children}</body>
+    </html>
+  );
+}
diff --git a/app/src/app/user/page.tsx b/app/src/app/user/page.tsx
@@ -0,0 +1,21 @@
+import { auth } from "src/auth";
+
+import Link from "next/link";
+
+export default async function Page() {
+  const session = await auth();
+
+  if (session) {
+    return (
+      <>
+        <p>
+          <Link href="/auth/signout">Sign out</Link>
+        </p>
+        <strong>User ID: {session.sub}</strong>
+        <code>{JSON.stringify(session, null, 2)}</code>
+      </>
+    );
+  }
+
+  return <Link href="/api/auth/signin">Sign in</Link>;
+}