Authentication Patterns Complete | Google Antigravity Directory

.antigravity

# Authentication Patterns Complete Guide for Google Antigravity

Implement secure, user-friendly authentication using Google Antigravity IDE.

## NextAuth.js Configuration

```typescript
// app/api/auth/[...nextauth]/route.ts
import NextAuth from "next-auth";
import GoogleProvider from "next-auth/providers/google";
import GitHubProvider from "next-auth/providers/github";
import CredentialsProvider from "next-auth/providers/credentials";
import { DrizzleAdapter } from "@auth/drizzle-adapter";
import { db } from "@/lib/db";
import { verifyPassword } from "@/lib/auth";

export const authOptions = {
  adapter: DrizzleAdapter(db),
  providers: [
    GoogleProvider({
      clientId: process.env.GOOGLE_CLIENT_ID!,
      clientSecret: process.env.GOOGLE_CLIENT_SECRET!
    }),
    GitHubProvider({
      clientId: process.env.GITHUB_CLIENT_ID!,
      clientSecret: process.env.GITHUB_CLIENT_SECRET!
    }),
    CredentialsProvider({
      name: "credentials",
      credentials: {
        email: { label: "Email", type: "email" },
        password: { label: "Password", type: "password" }
      },
      async authorize(credentials) {
        if (!credentials?.email || !credentials?.password) {
          throw new Error("Invalid credentials");
        }

        const user = await db.query.users.findFirst({
          where: eq(users.email, credentials.email)
        });

        if (!user || !user.password) {
          throw new Error("Invalid credentials");
        }

        const isValid = await verifyPassword(credentials.password, user.password);
        if (!isValid) {
          throw new Error("Invalid credentials");
        }

        return { id: user.id, email: user.email, name: user.name };
      }
    })
  ],
  callbacks: {
    async jwt({ token, user, account }) {
      if (user) {
        token.id = user.id;
        token.role = user.role;
      }
      return token;
    },
    async session({ session, token }) {
      if (token) {
        session.user.id = token.id;
        session.user.role = token.role;
      }
      return session;
    }
  },
  pages: {
    signIn: "/login",
    error: "/auth/error"
  },
  session: {
    strategy: "jwt",
    maxAge: 30 * 24 * 60 * 60 // 30 days
  }
};

const handler = NextAuth(authOptions);
export { handler as GET, handler as POST };
```

## Protected Routes Middleware

```typescript
// middleware.ts
import { NextResponse } from "next/server";
import type { NextRequest } from "next/server";
import { getToken } from "next-auth/jwt";

const publicPaths = ["/", "/login", "/signup", "/forgot-password"];
const adminPaths = ["/admin"];

export async function middleware(request: NextRequest) {
  const { pathname } = request.nextUrl;
  
  // Allow public paths
  if (publicPaths.some(path => pathname.startsWith(path))) {
    return NextResponse.next();
  }

  const token = await getToken({
    req: request,
    secret: process.env.NEXTAUTH_SECRET
  });

  // Redirect to login if not authenticated
  if (!token) {
    const loginUrl = new URL("/login", request.url);
    loginUrl.searchParams.set("callbackUrl", pathname);
    return NextResponse.redirect(loginUrl);
  }

  // Check admin routes
  if (adminPaths.some(path => pathname.startsWith(path))) {
    if (token.role !== "admin") {
      return NextResponse.redirect(new URL("/", request.url));
    }
  }

  return NextResponse.next();
}

export const config = {
  matcher: ["/((?!api|_next/static|_next/image|favicon.ico).*)"]
};
```

## Auth Hook

```typescript
// hooks/useAuth.ts
"use client";

import { useSession, signIn, signOut } from "next-auth/react";
import { useRouter } from "next/navigation";

export function useAuth() {
  const { data: session, status } = useSession();
  const router = useRouter();

  const login = async (email: string, password: string) => {
    const result = await signIn("credentials", {
      email,
      password,
      redirect: false
    });

    if (result?.error) {
      throw new Error(result.error);
    }

    router.push("/dashboard");
  };

  const loginWithProvider = (provider: "google" | "github") => {
    signIn(provider, { callbackUrl: "/dashboard" });
  };

  const logout = () => {
    signOut({ callbackUrl: "/" });
  };

  return {
    user: session?.user,
    isAuthenticated: !!session,
    isLoading: status === "loading",
    login,
    loginWithProvider,
    logout
  };
}
```

## Best Practices

1. **Use secure session management** with JWT or database sessions
2. **Implement CSRF protection** for forms
3. **Hash passwords** with bcrypt or argon2
4. **Use OAuth** for third-party authentication
5. **Implement rate limiting** on auth endpoints
6. **Add two-factor authentication** for sensitive accounts
7. **Log authentication events** for security auditing

Google Antigravity helps implement secure authentication patterns with proper session management.

When to Use This Prompt

This authentication prompt is ideal for developers working on:

authentication applications requiring modern best practices and optimal performance
Projects that need production-ready authentication code with proper error handling
Teams looking to standardize their authentication development workflow
Developers wanting to learn industry-standard authentication patterns and techniques

By using this prompt, you can save hours of manual coding and ensure best practices are followed from the start. It's particularly valuable for teams looking to maintain consistency across their authentication implementations.

How to Use

Copy the prompt - Click the copy button above to copy the entire prompt to your clipboard
Paste into your AI assistant - Use with Claude, ChatGPT, Cursor, or any AI coding tool
Customize as needed - Adjust the prompt based on your specific requirements
Review the output - Always review generated code for security and correctness

💡 Pro Tip: For best results, provide context about your project structure and any specific constraints or preferences you have.

Best Practices

✓ Always review generated code for security vulnerabilities before deploying
✓ Test the authentication code in a development environment first
✓ Customize the prompt output to match your project's coding standards
✓ Keep your AI assistant's context window in mind for complex requirements
✓ Version control your prompts alongside your code for reproducibility

Frequently Asked Questions

Can I use this authentication prompt commercially?

Yes! All prompts on Antigravity AI Directory are free to use for both personal and commercial projects. No attribution required, though it's always appreciated.

Which AI assistants work best with this prompt?

This prompt works excellently with Claude, ChatGPT, Cursor, GitHub Copilot, and other modern AI coding assistants. For best results, use models with large context windows.

How do I customize this prompt for my specific needs?

You can modify the prompt by adding specific requirements, constraints, or preferences. For authentication projects, consider mentioning your framework version, coding style, and any specific libraries you're using.

Related Prompts

💬 Comments

Loading comments...

# Authentication Patterns Complete Guide for Google Antigravity Implement secure, user-friendly authentication using Google Antigravity IDE. ## NextAuth.js Configuration ```typescript // app/api/auth/[...nextauth]/route.ts import NextAuth from "next-auth"; import GoogleProvider from "next-auth/providers/google"; import GitHubProvider from "next-auth/providers/github"; import CredentialsProvider from "next-auth/providers/credentials"; import { DrizzleAdapter } from "@auth/drizzle-adapter"; import { db } from "@/lib/db"; import { verifyPassword } from "@/lib/auth"; export const authOptions = { adapter: DrizzleAdapter(db), providers: [ GoogleProvider({ clientId: process.env.GOOGLE_CLIENT_ID!, clientSecret: process.env.GOOGLE_CLIENT_SECRET! }), GitHubProvider({ clientId: process.env.GITHUB_CLIENT_ID!, clientSecret: process.env.GITHUB_CLIENT_SECRET! }), CredentialsProvider({ name: "credentials", credentials: { email: { label: "Email", type: "email" }, password: { label: "Password", type: "password" } }, async authorize(credentials) { if (!credentials?.email || !credentials?.password) { throw new Error("Invalid credentials"); } const user = await db.query.users.findFirst({ where: eq(users.email, credentials.email) }); if (!user || !user.password) { throw new Error("Invalid credentials"); } const isValid = await verifyPassword(credentials.password, user.password); if (!isValid) { throw new Error("Invalid credentials"); } return { id: user.id, email: user.email, name: user.name }; } }) ], callbacks: { async jwt({ token, user, account }) { if (user) { token.id = user.id; token.role = user.role; } return token; }, async session({ session, token }) { if (token) { session.user.id = token.id; session.user.role = token.role; } return session; } }, pages: { signIn: "/login", error: "/auth/error" }, session: { strategy: "jwt", maxAge: 30 * 24 * 60 * 60 // 30 days } }; const handler = NextAuth(authOptions); export { handler as GET, handler as POST }; ``` ## Protected Routes Middleware ```typescript // middleware.ts import { NextResponse } from "next/server"; import type { NextRequest } from "next/server"; import { getToken } from "next-auth/jwt"; const publicPaths = ["/", "/login", "/signup", "/forgot-password"]; const adminPaths = ["/admin"]; export async function middleware(request: NextRequest) { const { pathname } = request.nextUrl; // Allow public paths if (publicPaths.some(path => pathname.startsWith(path))) { return NextResponse.next(); } const token = await getToken({ req: request, secret: process.env.NEXTAUTH_SECRET }); // Redirect to login if not authenticated if (!token) { const loginUrl = new URL("/login", request.url); loginUrl.searchParams.set("callbackUrl", pathname); return NextResponse.redirect(loginUrl); } // Check admin routes if (adminPaths.some(path => pathname.startsWith(path))) { if (token.role !== "admin") { return NextResponse.redirect(new URL("/", request.url)); } } return NextResponse.next(); } export const config = { matcher: ["/((?!api|_next/static|_next/image|favicon.ico).*)"] }; ``` ## Auth Hook ```typescript // hooks/useAuth.ts "use client"; import { useSession, signIn, signOut } from "next-auth/react"; import { useRouter } from "next/navigation"; export function useAuth() { const { data: session, status } = useSession(); const router = useRouter(); const login = async (email: string, password: string) => { const result = await signIn("credentials", { email, password, redirect: false }); if (result?.error) { throw new Error(result.error); } router.push("/dashboard"); }; const loginWithProvider = (provider: "google" | "github") => { signIn(provider, { callbackUrl: "/dashboard" }); }; const logout = () => { signOut({ callbackUrl: "/" }); }; return { user: session?.user, isAuthenticated: !!session, isLoading: status === "loading", login, loginWithProvider, logout }; } ``` ## Best Practices 1. **Use secure session management** with JWT or database sessions 2. **Implement CSRF protection** for forms 3. **Hash passwords** with bcrypt or argon2 4. **Use OAuth** for third-party authentication 5. **Implement rate limiting** on auth endpoints 6. **Add two-factor authentication** for sensitive accounts 7. **Log authentication events** for security auditing Google Antigravity helps implement secure authentication patterns with proper session management.