1. Auth Provider
What is auth provider?
Auth provider is an object which contains methods to handle authentication and access control in your app. It provides a way to authenticate users and authorize them to access resources. refine consumes these methods via auth hooks.
Auth provider's methods expect to return a Promise. So, you can use async methods to create auth provider. Therefore, to create auth provider from scratch, you can use any third-party authentication service like Auth0, Okta, etc. or your own custom methods. We'll see how to create auth provider in the next sections.
Moreover, refine offers built-in examples for auth providers. You can use them as a starting point for your own auth provider. You can check Auth Provider Examples to see the list of examples.
The typical auth provider has the following methods:
import { AuthBindings } from '@refinedev/core'
const authProvider: AuthBindings = {
// required methods
login: async (params: any) => ({}),
check: async (params: any) => ({}),
logout: async (params: any) => ({}),
onError: async (params: any) => ({}),
// optional methods
register: async (params: any) => ({}),
forgotPassword: async (params: any) => ({}),
updatePassword: async (params: any) => ({}),
getPermissions: async (params: any) => ({}),
getIdentity: async (params?: any) => ({}),
}
These methods are used to perform auth operations by refine hooks. You can check Auth Provider documentation to see the details of each method.
Using Auth Providers in refine
When you create a new auth provider, you need to pass it to the <Refine/> component as a prop. So, refine can use to handle authentication.
// ---
import { AuthBindings, Refine } from '@refinedev/core'
// It is a mock auth provider.
const authProvider: AuthBindings = {
// required methods
login: async (params: any) => ({}),
check: async (params: any) => ({}),
logout: async (params: any) => ({}),
onError: async (params: any) => ({}),
}
;<Refine
// ---
authProvider={authProvider}
/>
Refer to the <Refine/> documentation for more information →
How are auth provider methods used in the app?
Each method of auth provider is corresponding to a hook in refine. So, you can use these hooks to perform auth operations in your app. You can check Auth Hooks documentation to see the details of each hook.
For example, you can use useLogin hook to perform login operation like below:
import { useLogin } from '@refinedev/core'
type LoginVariables = {
email: string
password: string
}
const { mutate } = useLogin<LoginVariables>()
const handleLogin = async (values) => {
await mutate(values)
}
As you can see, useLogin hook returns a mutate function. When you call this function, it calls the login method of auth provider like the below:
import { AuthBindings } from '@refinedev/core'
const authProvider: AuthBindings = {
login: ({ email, password }) => {
const response = await axios.post('/api/login', { email, password })
if (response.status === 200) {
return {
success: true,
redirectTo: '/',
}
}
return {
success: false,
error: {
message: 'Invalid credentials',
name: 'Invalid credentials',
},
}
},
// ---
}
We made an example to show the relationship between auth provider methods and auth hooks. We used the useLogin hook in the example, but all auth hooks work the same way.
Auth Provider Examples
You can use the following auth provider examples as a starting point for your own auth provider or you can use them as it is. Check the links below to see the details of each example.
- Basic - A basic auth provider example.
- Keycloak - An auth provider example with Keycloak.
- Auth0 - An auth provider example with Auth0.
- Google Auth - An auth provider example with Google Auth.
- OTP Login - An auth provider example with OTP Login.
- Appwrite - An auth provider example with Appwrite.
- Supabase - An auth provider example with Supabase.
- Strapi - An auth provider example with Strapi.
- Strapi Graphql - An auth provider example with Strapi Graphql.
- Nhost - An auth provider example with Nhost.
- Basic with Nextjs - A basic auth provider example with Nextjs.
- Basic with Remix - A basic auth provider example with Remix.
