feat: restructure authed routes to dashboard and add setup auth

Author: ifindev

.dev.vars.example

@@ -11,7 +11,7 @@ CLOUDFLARE_API_TOKEN=your-api-token-here
 
 # Authentication
 BETTER_AUTH_SECRET=your-better-auth-secret # see https://www.better-auth.com/docs/installation
-BETTER_AUTH_URL=http://localhost:3000 # Base URL of your app
+BETTER_AUTH_URL=http://localhost:3000 # Base URL of your app - should use the deployed URL in Workers for prod
 
 # Google Auth : see https://www.better-auth.com/docs/authentication/google
 GOOGLE_CLIENT_ID=your-google-client-id

README.md

@@ -88,6 +88,10 @@ CLOUDFLARE_ACCOUNT_ID=your-account-id-here
 CLOUDFLARE_D1_TOKEN=your-api-token-here
 ```
 
+### Add Environment Secret to Workers
+
+To store all the secrets on Workers for production, you can refer to the following documentations https://developers.cloudflare.com/workers/configuration/secrets/. Basically, all the secrets such as `GOOGLE_CLIENT_ID` and others should be kept on Cloudflare Secrets. 
+
 ## 3. Database Setup
 
 ### Option A: Use existing database (Recommended)

cloudflare-env.d.ts

@@ -1,12 +1,17 @@
 /* eslint-disable */
-// Generated by Wrangler by running `wrangler types --env-interface CloudflareEnv ./cloudflare-env.d.ts` (hash: 44497be1ce2e308eac95318919d21123)
+// Generated by Wrangler by running `wrangler types --env-interface CloudflareEnv ./cloudflare-env.d.ts` (hash: 27c9b47fcb70f49031934291d4d721fa)
 // Runtime types generated with workerd@1.20250906.0 2025-03-01 global_fetch_strictly_public,nodejs_compat
 declare namespace Cloudflare {
 	interface Env {
 		NEXTJS_ENV: string;
 		CLOUDFLARE_ACCOUNT_ID: string;
 		CLOUDFLARE_D1_TOKEN: string;
 		CLOUDFLARE_R2_URL: string;
+		CLOUDFLARE_API_TOKEN: string;
+		BETTER_AUTH_SECRET: string;
+		BETTER_AUTH_URL: string;
+		GOOGLE_CLIENT_ID: string;
+		GOOGLE_CLIENT_SECRET: string;
 		next_cf_app_bucket: R2Bucket;
 		next_cf_app: D1Database;
 		ASSETS: Fetcher;

middleware.ts

@@ -0,0 +1,26 @@
+import { type NextRequest, NextResponse } from "next/server";
+import { auth } from "./src/lib/auth";
+
+export async function middleware(request: NextRequest) {
+    try {
+        // Validate session, not just checking for cookie
+        const session = await auth.api.getSession({
+            headers: request.headers,
+        });
+
+        if (!session) {
+            return NextResponse.redirect(new URL("/login", request.url));
+        }
+
+        return NextResponse.next();
+    } catch (_error) {
+        // If session validation fails, redirect to login
+        return NextResponse.redirect(new URL("/login", request.url));
+    }
+}
+
+export const config = {
+    matcher: [
+        "/dashboard/:path*", // Protects /dashboard and all sub-routes
+    ],
+};

package.json

@@ -46,6 +46,7 @@
         "react": "19.1.0",
         "react-dom": "19.1.0",
         "react-hook-form": "^7.62.0",
+        "react-hot-toast": "^2.6.0",
         "tailwind-merge": "^3.3.1",
         "zod": "^4.1.8"
     },

pnpm-lock.yaml

@@ -0,0 +1,68 @@
+"use server";
+
+import { auth } from "@/lib/auth";
+import {
+    type AuthResponse,
+    type SignInSchema,
+    type SignUpSchema,
+    signInSchema,
+    signUpSchema,
+} from "@/lib/validations/auth.validation";
+
+// Re-export schemas for convenience
+export { signInSchema, signUpSchema };
+
+// #region SERVER ACTIONS
+
+export const signIn = async ({
+    email,
+    password,
+}: SignInSchema): Promise<AuthResponse> => {
+    try {
+        await auth.api.signInEmail({
+            body: {
+                email,
+                password,
+            },
+        });
+
+        return {
+            success: true,
+            message: "Signed in succesfully",
+        };
+    } catch (error) {
+        const err = error as Error;
+        return {
+            success: false,
+            message: err.message || "An unknown error occured.",
+        };
+    }
+};
+
+export const signUp = async ({
+    email,
+    password,
+    username,
+}: SignUpSchema): Promise<AuthResponse> => {
+    try {
+        await auth.api.signUpEmail({
+            body: {
+                email,
+                password,
+                name: username,
+            },
+        });
+
+        return {
+            success: true,
+            message: "Signed up succesfully",
+        };
+    } catch (error) {
+        const err = error as Error;
+        return {
+            success: false,
+            message: err.message || "An unknown error occured.",
+        };
+    }
+};
+// #endregion

src/actions/auth.action.ts

@@ -0,0 +1,189 @@
+"use client";
+
+import { zodResolver } from "@hookform/resolvers/zod";
+import { Loader2 } from "lucide-react";
+import Link from "next/link";
+import { useRouter } from "next/navigation";
+import { useState } from "react";
+import { useForm } from "react-hook-form";
+import toast from "react-hot-toast";
+import { signIn } from "@/actions/auth.action";
+import { Button } from "@/components/ui/button";
+import {
+    Card,
+    CardContent,
+    CardDescription,
+    CardHeader,
+    CardTitle,
+} from "@/components/ui/card";
+import {
+    Form,
+    FormControl,
+    FormField,
+    FormItem,
+    FormLabel,
+    FormMessage,
+} from "@/components/ui/form";
+import { Input } from "@/components/ui/input";
+import { authClient } from "@/lib/auth-client";
+import { cn } from "@/lib/utils";
+import {
+    type SignInSchema,
+    signInSchema,
+} from "@/lib/validations/auth.validation";
+
+export function LoginForm({
+    className,
+    ...props
+}: React.ComponentProps<"div">) {
+    const router = useRouter();
+    const [isLoading, setIsLoading] = useState(false);
+
+    const form = useForm<SignInSchema>({
+        resolver: zodResolver(signInSchema),
+        defaultValues: {
+            email: "",
+            password: "",
+        },
+    });
+
+    const signInWithGoogle = async () => {
+        const { signIn: clientSignIn } = await authClient();
+        await clientSignIn.social({
+            provider: "google",
+            callbackURL: "/dashboard",
+        });
+    };
+
+    async function onSubmit(values: SignInSchema) {
+        setIsLoading(true);
+        const { success, message } = await signIn(values);
+
+        if (success) {
+            toast.success(message.toString());
+            router.push("/dashboard");
+        } else {
+            toast.error(message.toString());
+        }
+        setIsLoading(false);
+    }
+
+    return (
+        <div className={cn("flex flex-col gap-6", className)} {...props}>
+            <Card>
+                <CardHeader className="text-center">
+                    <CardTitle className="text-xl">Welcome back</CardTitle>
+                    <CardDescription>
+                        Login with your Google account
+                    </CardDescription>
+                </CardHeader>
+                <CardContent>
+                    <Form {...form}>
+                        <form
+                            onSubmit={form.handleSubmit(onSubmit)}
+                            className="space-y-8"
+                        >
+                            <div className="grid gap-6">
+                                <Button
+                                    type="button"
+                                    variant="outline"
+                                    className="w-full"
+                                    onClick={signInWithGoogle}
+                                >
+                                    <svg
+                                        xmlns="http://www.w3.org/2000/svg"
+                                        viewBox="0 0 24 24"
+                                    >
+                                        <path
+                                            d="M12.48 10.92v3.28h7.84c-.24 1.84-.853 3.187-1.787 4.133-1.147 1.147-2.933 2.4-6.053 2.4-4.827 0-8.6-3.893-8.6-8.72s3.773-8.72 8.6-8.72c2.6 0 4.507 1.027 5.907 2.347l2.307-2.307C18.747 1.44 16.133 0 12.48 0 5.867 0 .307 5.387.307 12s5.56 12 12.173 12c3.573 0 6.267-1.173 8.373-3.36 2.16-2.16 2.84-5.213 2.84-7.667 0-.76-.053-1.467-.173-2.053H12.48z"
+                                            fill="currentColor"
+                                        />
+                                    </svg>
+                                    Login with Google
+                                </Button>
+                                <div className="after:border-border relative text-center text-sm after:absolute after:inset-0 after:top-1/2 after:z-0 after:flex after:items-center after:border-t">
+                                    <span className="bg-card text-muted-foreground relative z-10 px-2">
+                                        Or continue with
+                                    </span>
+                                </div>
+                                <div className="grid gap-6">
+                                    <FormField
+                                        control={form.control}
+                                        name="email"
+                                        render={({ field }) => (
+                                            <FormItem>
+                                                <FormLabel>Email</FormLabel>
+                                                <FormControl>
+                                                    <Input
+                                                        placeholder="mail@mail.com"
+                                                        {...field}
+                                                    />
+                                                </FormControl>
+                                                <FormMessage />
+                                            </FormItem>
+                                        )}
+                                    />
+                                    <div className="flex flex-col gap-2">
+                                        <FormField
+                                            control={form.control}
+                                            name="password"
+                                            render={({ field }) => (
+                                                <FormItem>
+                                                    <FormLabel>
+                                                        Password
+                                                    </FormLabel>
+                                                    <FormControl>
+                                                        <Input
+                                                            placeholder="*********"
+                                                            {...field}
+                                                            type="password"
+                                                        />
+                                                    </FormControl>
+                                                    <FormMessage />
+                                                </FormItem>
+                                            )}
+                                        />
+                                        <a
+                                            href="#"
+                                            className="ml-auto text-sm underline-offset-4 hover:underline"
+                                        >
+                                            Forgot your password?
+                                        </a>
+                                    </div>
+                                    <Button
+                                        type="submit"
+                                        className="w-full"
+                                        disabled={isLoading}
+                                    >
+                                        {isLoading ? (
+                                            <>
+                                                <Loader2 className="size-4 animate-spin mr-2" />
+                                                Loading...
+                                            </>
+                                        ) : (
+                                            "Login"
+                                        )}
+                                    </Button>
+                                </div>
+                                <div className="text-center text-sm">
+                                    Don&apos;t have an account?{" "}
+                                    <Link
+                                        href="/signup"
+                                        className="underline underline-offset-4"
+                                    >
+                                        Sign up
+                                    </Link>
+                                </div>
+                            </div>
+                        </form>
+                    </Form>
+                </CardContent>
+            </Card>
+            <div className="text-muted-foreground *:[a]:hover:text-primary text-center text-xs text-balance *:[a]:underline *:[a]:underline-offset-4">
+                By clicking continue, you agree to our{" "}
+                <a href="#">Terms of Service</a> and{" "}
+                <a href="#">Privacy Policy</a>.
+            </div>
+        </div>
+    );
+}