Implement updateSession & isUpdate parameter#4744
Implement updateSession & isUpdate parameter#4744christoph-pflueger wants to merge 4 commits intonextauthjs:mainfrom christoph-pflueger:main
Conversation
christoph-pflueger
requested review from
balazsorban44 and
ndom91
as code owners
|
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
github-actions
bot
added
client
|
Any ETA for the release of this? |
|
Can I gently nudge this pull request? I hope if gets merged already as this is also a blocker in our application - I think this should be considered critical |
The fact that this pull request hasn't received as much as a reply for almost three months even though there appears to be genuine interest is mind-blowing to me. It's not like other pull requests are not being worked on either. |
|
@balazsorban44 Could you help review this PR? It seems like a common feature should be built into next-auth. Thank you for your time. |
|
@balazsorban44 hoping for your time and consideration on this fixes. Thanks |
ThangHuuVu
left a comment
ThangHuuVu
left a comment
There was a problem hiding this comment.
Thanks for the PR @git-chrisp and sorry for the delayed response, I reviewed your PR
It seems like the added method updateSession is exactly the same as getSession, the only difference is in the callback session and jwt
Could you give an example case where the extra isUpdate param is helpful? 🤔
The implemented Assume someone changes something in his profile settings that is stored in e.g. the token's custom claims. There is no way to update this change in the The |
|
Is there any deadline to fix this problem? For now the only way to fix this issue is reloading page and this way clean the state or the action user wants to do |
|
Is any update on this pr soon, we are having the same problem authenticating with a custom PKCE provider, and when refreshing the token and have the new token back. the client keeps calling JWT with the old invalid token. and we use one-time refresh tokens so, it's pretty impossible to get around this setup without any compromise with the rules we already have. |
|
May I kindly ask for an update? I had this PR bookmarked months ago, and it's a little disheartening to see that there hasn't been any progress... It's a blocker for our application, and there seems to be a lot of interest from other people as well. |
|
I'm sorry if I'm mistaken but is this related to this workaround? https://stackoverflow.com/a/70405437/9123724 |
|
Currently using |
This only works if |
It is not good, I need to update my auth 2 tokens {refresh token, access token} every 1 hour, but for now I am forced to reload my site: it is my next auth API, and it is my client: But how update it without refresh |
|
Happy to send reviewers a case of beer to get this PR approved (and pulled). As others have noted, this is basic/needed functionality. Thanks! |
| return baseUrl | ||
| }, | ||
| async session({ session, user, token }) { | ||
| async session({ session, user, token, isUpdate }) { |
There was a problem hiding this comment.
Could you use isUpdated instead? isUpdate has a grammar issue.
balazsorban44
force-pushed
the
main
branch
6 times, most recently
from
19c6807 to
3be7bb7
Compare
|
I'd pitch in for a second case - this would be super beneficial! |
|
Closing in favor of #7056 |
13 participants
☕️ Reasoning
What changes are being made? What feature/bug is being fixed here?
Implements
updateSessionto be able to update theSessionProvider's state without having to reload the page. The update event is propagated to thejwtandsessioncallbacks via anisUpdateparameter. This helps to avoid having to check if the token and session is up to date on every request.As there are currently no tests implemented for callbacks, I skipped that step.
🧢 Checklist
🎫 Affected issues
Please scout and link issues that might be solved by this PR.
Fixes: #596
Fixes: #3941
Fixes: #2208
Might fix: #2129
📌 Resources