import type { NextAuthOptions } from "next-auth"; import CredentialsProvider from "next-auth/providers/credentials"; const API_URL = process.env.NEXT_PUBLIC_API_URL || "http://127.0.0.1:8000"; export const authOptions: NextAuthOptions = { providers: [ CredentialsProvider({ name: "credentials", credentials: { username: { label: "Username", type: "text" }, password: { label: "Password", type: "password" }, }, async authorize(credentials) { if (!credentials?.username || !credentials?.password) return null; try { const res = await fetch(`${API_URL}/api/login`, { method: "POST", headers: { "Content-Type": "application/json", "Accept": "application/json", }, body: JSON.stringify({ username: credentials.username, password: credentials.password, }), }); const data = await res.json(); if (data.status !== "success" || !data.data?.token) { return null; } const user = data.data.user; return { id: String(user.id), username: user.username, name: user.name || `${user.first_name} ${user.last_name}`.trim(), email: user.email || "", isSuperAdmin: !!user.is_super_admin, type: user.type || "", accessToken: data.data.token, }; } catch { return null; } }, }), ], session: { strategy: "jwt" }, callbacks: { async jwt({ token, user }) { if (user) { token.id = user.id; token.username = user.username; token.isSuperAdmin = user.isSuperAdmin; token.type = user.type; token.accessToken = user.accessToken; } return token; }, async session({ session, token }) { session.user.id = token.id; session.user.username = token.username; session.user.isSuperAdmin = token.isSuperAdmin; session.user.type = token.type; session.user.accessToken = token.accessToken; return session; }, }, pages: { signIn: "/login" }, secret: process.env.NEXTAUTH_SECRET, };