feat(auth): update better-auth to version 1.4.5 and improve login handling (#1870)

github-actions[bot] · tofikwest · web-flow · commit 64c12a703386 · 2025-12-05T18:23:48.000-05:00
Co-authored-by: Tofik Hasanov &lt;annexcies@gmail.com&gt;
diff --git a/apps/portal/package.json b/apps/portal/package.json
@@ -16,7 +16,7 @@
     "@types/jszip": "^3.4.1",
     "@upstash/ratelimit": "^2.0.5",
     "archiver": "^7.0.1",
-    "better-auth": "^1.3.27",
+    "better-auth": "^1.4.5",
     "class-variance-authority": "^0.7.1",
     "geist": "^1.3.1",
     "jszip": "^3.10.1",
diff --git a/apps/portal/src/app/actions/login.ts b/apps/portal/src/app/actions/login.ts
@@ -2,6 +2,7 @@
 
 import { auth } from '@/app/lib/auth';
 import { createSafeActionClient } from 'next-safe-action';
+import { headers } from 'next/headers';
 import { z } from 'zod';
 
 const handleServerError = (e: Error) => {
@@ -28,7 +29,7 @@ const handleServerError = (e: Error) => {
     }
 
     if (errorMessage.includes('too many attempts')) {
-      return 'Too  many requests. Please try again later.';
+      return 'Too many requests. Please try again later.';
     }
 
     // If we can't match a specific error, throw a generic but helpful message
@@ -46,11 +47,15 @@ export const login = createSafeActionClient({ handleServerError })
     }),
   )
   .action(async ({ parsedInput }) => {
+    const headersList = await headers();
+    
     await auth.api.signInEmailOTP({
+      headers: headersList,
       body: {
         email: parsedInput.email,
         otp: parsedInput.otp,
       },
+      asResponse: true,
     });
 
     return {
diff --git a/apps/portal/src/app/lib/auth.ts b/apps/portal/src/app/lib/auth.ts
@@ -12,9 +12,11 @@ export const auth = betterAuth({
     provider: 'postgresql',
   }),
   advanced: {
-    // This will enable us to fall back to DB for ID generation.
-    // It's important so we can use custom IDs specified in Prisma Schema.
-    generateId: false,
+    database: {
+      // This will enable us to fall back to DB for ID generation.
+      // It's important so we can use custom IDs specified in Prisma Schema.
+      generateId: false,
+    },
   },
   trustedOrigins: ['http://localhost:3000', 'https://*.trycomp.ai'],
   secret: env.AUTH_SECRET!,
diff --git a/bun.lock b/bun.lock
@@ -8,6 +8,7 @@
         "@types/cheerio": "^1.0.0",
         "@types/react-syntax-highlighter": "^15.5.13",
         "@upstash/vector": "^1.2.2",
+        "better-auth": "1.4.5",
         "cheerio": "^1.1.2",
         "react-syntax-highlighter": "^15.6.6",
         "unpdf": "^1.4.0",
diff --git a/package.json b/package.json
@@ -90,6 +90,7 @@
     "@types/cheerio": "^1.0.0",
     "@types/react-syntax-highlighter": "^15.5.13",
     "@upstash/vector": "^1.2.2",
+    "better-auth": "1.4.5",
     "cheerio": "^1.1.2",
     "react-syntax-highlighter": "^15.6.6",
     "unpdf": "^1.4.0",
