Next.js Discord

Discord Forum

how to get add email verified in github next auth?

Unanswered
American Chinchilla posted this in #help-forum
Open in Discord
American ChinchillaOP
The only way I see is to do a URL request with the access token as a bearer to https://docs.github.com/en/rest/users/emails?apiVersion=2022-11-28 which is GitHub official docs.

Currently, the profile returned doesnt have the info i need. How can i do this with my current setup?
export const { handlers, signIn, signOut, auth } = NextAuth({
  providers: [
    GitHub({
      clientId: process.env.GITHUB_CLIENT_ID,
      clientSecret: process.env.GITHUB_CLIENT_SECRET,
      authorization: {
        url: '  https://api.github.com/user/emails',
        params: { scope: 'user' },
      },
      profile(profile: any) {
        return {
          id: profile.sub,
          name: profile.nickname,
          email: profile.email,
          image: profile.picture,
          email_verified: profile.email_verified,
        }
      },
    }),
  ],
  secret: process.env.NEXT_AUTH_SCRET,
  callbacks: {
    async jwt({ token, account, profile }) {
      console.log(profile)
      // Persist the OAuth access_token to the token right after signin
      if (account) {
        token.accessToken = account.access_token
        token.isEmailVerified = profile?.email_verified
      }
      return token
    },
    async session({ session, token, user }) {
      // Send properties to the client, like an access_token and user id from a provider.
      const accessToken = token.accessToken
      const userId = token.id
      const isEmailVerified = Boolean(token.isEmailVerified)

      return { ...session, accessToken, userId, isEmailVerified }
    },
  },
})

7 Replies

American ChinchillaOP
with the current setup, it is incorrect as I get unauthorize from GitHub API, if i remove the authorization field this error doesnt happen but then how do I get the email verified field>
the email_verified field doesnt exist in the Profile object
American ChinchillaOP
nvm i think il just do the request in my backend since i cant trust user inputs anyways
but where should I send the API request?
in my jwt callback
or session callback
okay i found out its in the sign-in callback