Lucia Auth Session Management | Google Antigravity Directory

.antigravity

# Lucia Auth Session Management for Google Antigravity

Lucia provides lightweight, flexible authentication. This guide covers patterns for Google Antigravity IDE and Gemini 3.

## Setup with Drizzle Adapter

```typescript
// lib/auth.ts
import { Lucia } from 'lucia';
import { DrizzlePostgreSQLAdapter } from '@lucia-auth/adapter-drizzle';
import { db } from './db';
import { users, sessions } from './db/schema';

const adapter = new DrizzlePostgreSQLAdapter(db, sessions, users);

export const lucia = new Lucia(adapter, {
  sessionCookie: {
    expires: false,
    attributes: {
      secure: process.env.NODE_ENV === 'production',
    },
  },
  getUserAttributes: (attributes) => ({
    email: attributes.email,
    name: attributes.name,
    role: attributes.role,
  }),
});

declare module 'lucia' {
  interface Register {
    Lucia: typeof lucia;
    DatabaseUserAttributes: {
      email: string;
      name: string;
      role: 'user' | 'admin';
    };
  }
}
```

## Database Schema

```typescript
// db/schema.ts
import { pgTable, text, timestamp } from 'drizzle-orm/pg-core';

export const users = pgTable('users', {
  id: text('id').primaryKey(),
  email: text('email').notNull().unique(),
  name: text('name').notNull(),
  role: text('role').$type<'user' | 'admin'>().default('user').notNull(),
  hashedPassword: text('hashed_password').notNull(),
  createdAt: timestamp('created_at').defaultNow().notNull(),
});

export const sessions = pgTable('sessions', {
  id: text('id').primaryKey(),
  userId: text('user_id').notNull().references(() => users.id),
  expiresAt: timestamp('expires_at', { withTimezone: true, mode: 'date' }).notNull(),
});
```

## Sign Up Action

```typescript
// app/signup/actions.ts
'use server';

import { lucia } from '@/lib/auth';
import { db } from '@/lib/db';
import { users } from '@/lib/db/schema';
import { hash } from '@node-rs/argon2';
import { generateIdFromEntropySize } from 'lucia';
import { cookies } from 'next/headers';
import { redirect } from 'next/navigation';
import { z } from 'zod';

const signUpSchema = z.object({
  email: z.string().email(),
  name: z.string().min(2),
  password: z.string().min(8),
});

export async function signUp(formData: FormData) {
  const result = signUpSchema.safeParse({
    email: formData.get('email'),
    name: formData.get('name'),
    password: formData.get('password'),
  });

  if (!result.success) {
    return { error: 'Invalid input' };
  }

  const { email, name, password } = result.data;

  const existingUser = await db.query.users.findFirst({
    where: (users, { eq }) => eq(users.email, email),
  });

  if (existingUser) {
    return { error: 'Email already registered' };
  }

  const hashedPassword = await hash(password, {
    memoryCost: 19456,
    timeCost: 2,
    outputLen: 32,
    parallelism: 1,
  });

  const userId = generateIdFromEntropySize(10);

  await db.insert(users).values({
    id: userId,
    email,
    name,
    hashedPassword,
    role: 'user',
  });

  const session = await lucia.createSession(userId, {});
  const sessionCookie = lucia.createSessionCookie(session.id);

  cookies().set(sessionCookie.name, sessionCookie.value, sessionCookie.attributes);

  redirect('/dashboard');
}
```

## Sign In Action

```typescript
// app/signin/actions.ts
'use server';

import { lucia } from '@/lib/auth';
import { db } from '@/lib/db';
import { verify } from '@node-rs/argon2';
import { cookies } from 'next/headers';
import { redirect } from 'next/navigation';

export async function signIn(formData: FormData) {
  const email = formData.get('email') as string;
  const password = formData.get('password') as string;

  const user = await db.query.users.findFirst({
    where: (users, { eq }) => eq(users.email, email),
  });

  if (!user) {
    return { error: 'Invalid credentials' };
  }

  const validPassword = await verify(user.hashedPassword, password);

  if (!validPassword) {
    return { error: 'Invalid credentials' };
  }

  const session = await lucia.createSession(user.id, {});
  const sessionCookie = lucia.createSessionCookie(session.id);

  cookies().set(sessionCookie.name, sessionCookie.value, sessionCookie.attributes);

  redirect('/dashboard');
}

export async function signOut() {
  const sessionId = cookies().get(lucia.sessionCookieName)?.value;
  
  if (sessionId) {
    await lucia.invalidateSession(sessionId);
  }

  const blankCookie = lucia.createBlankSessionCookie();
  cookies().set(blankCookie.name, blankCookie.value, blankCookie.attributes);

  redirect('/signin');
}
```

## Validate Session

```typescript
// lib/auth/validate.ts
import { lucia } from '@/lib/auth';
import { cookies } from 'next/headers';
import { cache } from 'react';

export const validateRequest = cache(async () => {
  const sessionId = cookies().get(lucia.sessionCookieName)?.value ?? null;

  if (!sessionId) {
    return { user: null, session: null };
  }

  const result = await lucia.validateSession(sessionId);

  try {
    if (result.session?.fresh) {
      const sessionCookie = lucia.createSessionCookie(result.session.id);
      cookies().set(sessionCookie.name, sessionCookie.value, sessionCookie.attributes);
    }
    if (!result.session) {
      const blankCookie = lucia.createBlankSessionCookie();
      cookies().set(blankCookie.name, blankCookie.value, blankCookie.attributes);
    }
  } catch {}

  return result;
});
```

## Protected Page

```typescript
// app/dashboard/page.tsx
import { validateRequest } from '@/lib/auth/validate';
import { redirect } from 'next/navigation';

export default async function DashboardPage() {
  const { user, session } = await validateRequest();

  if (!user) {
    redirect('/signin');
  }

  return (
    <div className="p-8">
      <h1 className="text-2xl font-bold">Welcome, {user.name}!</h1>
      <p>Email: {user.email}</p>
      <p>Role: {user.role}</p>
    </div>
  );
}
```

## Best Practices

1. **Argon2**: Use Argon2id for password hashing
2. **Sessions**: Database-backed sessions for security
3. **CSRF**: Lucia handles CSRF protection
4. **Cache**: Cache validateRequest with React cache
5. **Fresh Sessions**: Auto-extend sessions on activity
6. **Type Safety**: Full TypeScript support

Google Antigravity's Gemini 3 understands Lucia patterns for secure authentication.

When to Use This Prompt

This Lucia prompt is ideal for developers working on:

Lucia applications requiring modern best practices and optimal performance
Projects that need production-ready Lucia code with proper error handling
Teams looking to standardize their lucia development workflow
Developers wanting to learn industry-standard Lucia patterns and techniques

By using this prompt, you can save hours of manual coding and ensure best practices are followed from the start. It's particularly valuable for teams looking to maintain consistency across their lucia implementations.

How to Use

Copy the prompt - Click the copy button above to copy the entire prompt to your clipboard
Paste into your AI assistant - Use with Claude, ChatGPT, Cursor, or any AI coding tool
Customize as needed - Adjust the prompt based on your specific requirements
Review the output - Always review generated code for security and correctness

💡 Pro Tip: For best results, provide context about your project structure and any specific constraints or preferences you have.

Best Practices

✓ Always review generated code for security vulnerabilities before deploying
✓ Test the Lucia code in a development environment first
✓ Customize the prompt output to match your project's coding standards
✓ Keep your AI assistant's context window in mind for complex requirements
✓ Version control your prompts alongside your code for reproducibility

Frequently Asked Questions

Can I use this Lucia prompt commercially?

Yes! All prompts on Antigravity AI Directory are free to use for both personal and commercial projects. No attribution required, though it's always appreciated.

Which AI assistants work best with this prompt?

This prompt works excellently with Claude, ChatGPT, Cursor, GitHub Copilot, and other modern AI coding assistants. For best results, use models with large context windows.

How do I customize this prompt for my specific needs?

You can modify the prompt by adding specific requirements, constraints, or preferences. For Lucia projects, consider mentioning your framework version, coding style, and any specific libraries you're using.

Related Prompts

💬 Comments

Loading comments...

# Lucia Auth Session Management for Google Antigravity Lucia provides lightweight, flexible authentication. This guide covers patterns for Google Antigravity IDE and Gemini 3. ## Setup with Drizzle Adapter ```typescript // lib/auth.ts import { Lucia } from 'lucia'; import { DrizzlePostgreSQLAdapter } from '@lucia-auth/adapter-drizzle'; import { db } from './db'; import { users, sessions } from './db/schema'; const adapter = new DrizzlePostgreSQLAdapter(db, sessions, users); export const lucia = new Lucia(adapter, { sessionCookie: { expires: false, attributes: { secure: process.env.NODE_ENV === 'production', }, }, getUserAttributes: (attributes) => ({ email: attributes.email, name: attributes.name, role: attributes.role, }), }); declare module 'lucia' { interface Register { Lucia: typeof lucia; DatabaseUserAttributes: { email: string; name: string; role: 'user' | 'admin'; }; } } ``` ## Database Schema ```typescript // db/schema.ts import { pgTable, text, timestamp } from 'drizzle-orm/pg-core'; export const users = pgTable('users', { id: text('id').primaryKey(), email: text('email').notNull().unique(), name: text('name').notNull(), role: text('role').$type<'user' | 'admin'>().default('user').notNull(), hashedPassword: text('hashed_password').notNull(), createdAt: timestamp('created_at').defaultNow().notNull(), }); export const sessions = pgTable('sessions', { id: text('id').primaryKey(), userId: text('user_id').notNull().references(() => users.id), expiresAt: timestamp('expires_at', { withTimezone: true, mode: 'date' }).notNull(), }); ``` ## Sign Up Action ```typescript // app/signup/actions.ts 'use server'; import { lucia } from '@/lib/auth'; import { db } from '@/lib/db'; import { users } from '@/lib/db/schema'; import { hash } from '@node-rs/argon2'; import { generateIdFromEntropySize } from 'lucia'; import { cookies } from 'next/headers'; import { redirect } from 'next/navigation'; import { z } from 'zod'; const signUpSchema = z.object({ email: z.string().email(), name: z.string().min(2), password: z.string().min(8), }); export async function signUp(formData: FormData) { const result = signUpSchema.safeParse({ email: formData.get('email'), name: formData.get('name'), password: formData.get('password'), }); if (!result.success) { return { error: 'Invalid input' }; } const { email, name, password } = result.data; const existingUser = await db.query.users.findFirst({ where: (users, { eq }) => eq(users.email, email), }); if (existingUser) { return { error: 'Email already registered' }; } const hashedPassword = await hash(password, { memoryCost: 19456, timeCost: 2, outputLen: 32, parallelism: 1, }); const userId = generateIdFromEntropySize(10); await db.insert(users).values({ id: userId, email, name, hashedPassword, role: 'user', }); const session = await lucia.createSession(userId, {}); const sessionCookie = lucia.createSessionCookie(session.id); cookies().set(sessionCookie.name, sessionCookie.value, sessionCookie.attributes); redirect('/dashboard'); } ``` ## Sign In Action ```typescript // app/signin/actions.ts 'use server'; import { lucia } from '@/lib/auth'; import { db } from '@/lib/db'; import { verify } from '@node-rs/argon2'; import { cookies } from 'next/headers'; import { redirect } from 'next/navigation'; export async function signIn(formData: FormData) { const email = formData.get('email') as string; const password = formData.get('password') as string; const user = await db.query.users.findFirst({ where: (users, { eq }) => eq(users.email, email), }); if (!user) { return { error: 'Invalid credentials' }; } const validPassword = await verify(user.hashedPassword, password); if (!validPassword) { return { error: 'Invalid credentials' }; } const session = await lucia.createSession(user.id, {}); const sessionCookie = lucia.createSessionCookie(session.id); cookies().set(sessionCookie.name, sessionCookie.value, sessionCookie.attributes); redirect('/dashboard'); } export async function signOut() { const sessionId = cookies().get(lucia.sessionCookieName)?.value; if (sessionId) { await lucia.invalidateSession(sessionId); } const blankCookie = lucia.createBlankSessionCookie(); cookies().set(blankCookie.name, blankCookie.value, blankCookie.attributes); redirect('/signin'); } ``` ## Validate Session ```typescript // lib/auth/validate.ts import { lucia } from '@/lib/auth'; import { cookies } from 'next/headers'; import { cache } from 'react'; export const validateRequest = cache(async () => { const sessionId = cookies().get(lucia.sessionCookieName)?.value ?? null; if (!sessionId) { return { user: null, session: null }; } const result = await lucia.validateSession(sessionId); try { if (result.session?.fresh) { const sessionCookie = lucia.createSessionCookie(result.session.id); cookies().set(sessionCookie.name, sessionCookie.value, sessionCookie.attributes); } if (!result.session) { const blankCookie = lucia.createBlankSessionCookie(); cookies().set(blankCookie.name, blankCookie.value, blankCookie.attributes); } } catch {} return result; }); ``` ## Protected Page ```typescript // app/dashboard/page.tsx import { validateRequest } from '@/lib/auth/validate'; import { redirect } from 'next/navigation'; export default async function DashboardPage() { const { user, session } = await validateRequest(); if (!user) { redirect('/signin'); } return ( <div className="p-8"> <h1 className="text-2xl font-bold">Welcome, {user.name}!</h1> <p>Email: {user.email}</p> <p>Role: {user.role}</p> </div> ); } ``` ## Best Practices 1. **Argon2**: Use Argon2id for password hashing 2. **Sessions**: Database-backed sessions for security 3. **CSRF**: Lucia handles CSRF protection 4. **Cache**: Cache validateRequest with React cache 5. **Fresh Sessions**: Auto-extend sessions on activity 6. **Type Safety**: Full TypeScript support Google Antigravity's Gemini 3 understands Lucia patterns for secure authentication.