#Custom Login Form with Qwik-Auth Plugin

I don't think that is official, you would have to ask the author

I did but not getting any response

It does seem to be built in

built in? how so

By that I mean I think it is official because if I recall correctly i didn’t need to install another package

I could be wrong about that

How did you install it? Is it an npm package too?

I also saw this example - https://github.com/wmalarski/qwik-authjs-example, but not a package

Looks like just an unofficial qwik fan user - https://gilfink.medium.com/adding-authentication-to-a-qwik-app-74c082521f99

That was the article I saw but I saw another article at some point that said it was an official thing

Looks like @slender cosmos's repo.

qwik-auth is an official package under the Qwik umbrella, but it's currently experimental and not officially released (you can find its code in the official Qwik repo). At the time being, there is an option to redirect to a custom login page using the pages configuration, but I couldn't figure out how to do the actual custom login with the current exposed actions. Maybe @olive laurel, who wrote the package, can share his thoughts on that.

It is an npm package that you can use. Just install it and auth.js:
pnpm i "@builder.io/qwik-auth" "@auth/core"

This post was created after I managed to figure out how to use the qwik-auth package since there is no documentation yet...

Thank you for this

This is a contrite example, but it works something like this.
in your authjs config

pages: {
  signIn: '/signin/',
  signOut: '/signout/',
}

and then your custom signin page

export default component$(() => {
  const signIn = useAuthSignin();
  return (
    <button
      class="flex items-center justify-center rounded bg-orange-500 px-4 py-2 text-white"
      disabled={signIn.isRunning}
      onClick$={() => signIn.run({ providerId: 'auth0', callbackUrl: '/' })}
    ></button>
  );
});

where useAuthSignin is imported from your [email protected] file

useAuthSignin is one of the new routeActions, so you could alternatively use it with <Form action={signIn}> instead.

you also have to keep in mind that @auth/core (AuthJS) is still under development itself. It's docs included. I've found that some of the configuration stuff isn't so defined on https://authjs.dev but you can find better documentation on https://next-auth.js.org

Thank you so much!

@rose minnow do you know how i would do it with the credentials provider?

More specifically how do I pass the users input (credentials) through the function?

I've not done it myself, but maybe something like this, https://next-auth.js.org/configuration/pages#credentials-sign-in You may have to get csrfToken from the /api/auth/csrf endpoint

adjusting for the nextiness of the example elsewhere probably too.

Thank you for your help and ideas - I’ll try this

This did not work... @olive laurel how can I implement this?

Do you have a repo? I can try to put something together. Your issue may be more authjs related than qwik.

I’ll dm the repo

I found this which seems to have auth built in: https://github.com/BuilderIO/qwik/tree/v0.23.0/starters/apps/qwikcity-test gonna take a look and see if that answers my question

Nothing helpful

I gave it a try yesterday.
I used an example of how to create custom login page with Next (https://github.com/ndom91/next-auth-example-sign-in-page/blob/main/src/pages/auth/signin.js). As it seems in the custom page example, you need to trigger a request to /api/auth/callback/credentials with the csrf token and it should do the trick. Unfortunately, in all my tries it didn't work. I tried to put onPost in the custom login page route and use fetch api to call that endpoint, I tried to add that endpoint in QwikCity routing, but I don't know what to put in it (tried the onRequest the the authServer builder is providing and other things as well). There is probably something missing (an auth.js signin function that takes credentials and then redirects to the authorize function or something).

I don't think the current useAuthSignin will work, needs some changes. The plugin@auth file handles the /api/auth routes, you don't need to create anything. Doing a traditional html form post as described at https://next-auth.js.org/configuration/pages#credentials-sign-in will work. You can get a csrf token from /api/auth/csrf

@rose minnow I got this half-way working, get csrf tokens et al but when I POST to /api/auth/callback/credentials the request contains the signin page as text blob. The fetch is being redirected. Would you mind sharing the actual auth request your are making and your [email protected] so I can check if my configuration is wrong?

It looks like authorize() is never being called

I don't have an example of manual posting. I don't use it that way. I just use the useAuthSignin and useAuthSignout routeActions.