@gftdcojp/gftd-auth
Advanced tools
β Enterprise-grade Auth0 integration for GFTD platform - Fully implemented with Organizations support
π Enterprise-grade Auth0 integration for GFTD platform
Complete Auth0 integration package. A 100% compatible replacement for @auth0/nextjs-auth0 with additional enterprise features.
GFTD Auth is a fully implemented enterprise-grade authentication package:
π― Zero Migration: Replace @auth0/nextjs-auth0 in 2 steps
π’ π Organization Management: Complete Auth0 Organizations support, multi-tenant
π Enterprise Security: Organization management, RBAC, Back-Channel Logout
π Edge Runtime Support: Vercel, Cloudflare, Deno Deploy
π‘οΈ Production Ready: Custom session store, audit logs, rate limiting
πͺ 100% Tested: Comprehensive quality assurance
# β
Production ready - Install directly from NPM
npm install @gftdcojp/gftd-auth
# Or with pnpm
pnpm add @gftdcojp/gftd-auth
# Or with yarn
yarn add @gftdcojp/gftd-auth
Add Auth0 credentials to .env.local:
# Required - Auth0 Application Settings
AUTH0_DOMAIN=auth.gftd.ai # Default configured
AUTH0_CLIENT_ID=k0ziPQ6IkDxE1AUSvzx5PwXtnf4y81x0 # Default configured
AUTH0_CLIENT_SECRET=your-client-secret # Individual configuration required
AUTH0_SECRET=your-32-char-secret-key # Session encryption key (32+ chars)
AUTH0_BASE_URL=http://localhost:3000 # Application base URL
# π Organization Settings (Optional)
AUTH0_ORGANIZATION=your-org-id # Fixed organization ID (for single-tenant)
App Router (app/layout.tsx)
import { UserProvider } from '@gftdcojp/gftd-auth/client';
export default function RootLayout({
children,
}: {
children: React.ReactNode;
}) {
return (
<html lang="en">
<body>
<UserProvider>
{children}
</UserProvider>
</body>
</html>
);
}
Middleware (middleware.ts)
import { auth0Middleware } from '@gftdcojp/gftd-auth/nextjs-auth0';
export default auth0Middleware;
export const config = {
matcher: [
'/((?!api/auth|_next/static|_next/image|favicon.ico).*)',
],
};
Route Handlers (app/api/auth/[...auth0]/route.ts)
import { handleAuth } from '@gftdcojp/gftd-auth/nextjs-auth0';
import { NextRequest } from 'next/server';
export async function GET(request: NextRequest, { params }: { params: { auth0: string[] } }) {
return handleAuth(request, params.auth0[0]);
}
export async function POST(request: NextRequest, { params }: { params: { auth0: string[] } }) {
return handleAuth(request, params.auth0[0]);
}
// next.config.js or environment variables
const nextConfig = {
env: {
AUTH0_ORGANIZATION: 'org_abc123' // Fixed organization ID
}
}
import { createNextJsAuth0Client } from '@gftdcojp/gftd-auth/nextjs-auth0';
const auth0Client = createNextJsAuth0Client({
organization: {
requireOrganization: true,
organizationSelectionUrl: '/select-organization',
autoAcceptInvitations: true,
}
});
import { useUser, buildOrganizationLoginUrl } from '@gftdcojp/gftd-auth/client';
export default function OrganizationLogin() {
const { user, isLoading } = useUser();
const handleOrganizationLogin = (orgId: string) => {
const loginUrl = buildOrganizationLoginUrl({
organizationId: orgId,
returnTo: '/dashboard',
});
window.location.href = loginUrl;
};
if (user?.organization_id) {
return (
<div>
<h1>Welcome to {user.metadata?.organization?.name}</h1>
<p>Your role: {user.metadata?.organization_roles?.join(', ')}</p>
</div>
);
}
return (
<div>
<button onClick={() => handleOrganizationLogin('org_123')}>
Login to Organization A
</button>
<button onClick={() => handleOrganizationLogin('org_456')}>
Login to Organization B
</button>
</div>
);
}
import { withOrganizationAuthRequired, getSessionWithOrganization } from '@gftdcojp/gftd-auth/nextjs-auth0';
// Page protection
export const middleware = withOrganizationAuthRequired('org_123');
// API protection
export async function GET(request: NextRequest) {
const session = await getSessionWithOrganization('org_123');
if (!session || session.user.organization_id !== 'org_123') {
return Response.json({ error: 'Unauthorized' }, { status: 401 });
}
return Response.json({ data: 'Organization-specific data' });
}
import { auth0 } from '@gftdcojp/gftd-auth/auth0-integration';
export default async function OrganizationManagement() {
// Get organization info
const organization = await auth0.organizations.get('org_123');
// Get organization members
const members = await auth0.organizations.getMembers('org_123');
// Add member
await auth0.organizations.addMember('org_123', 'user_456', ['member']);
// Send invitation
const invitation = await auth0.organizations.createInvitation('org_123', 'user@example.com', {
roles: ['admin'],
sendEmail: true,
ttlSec: 7 * 24 * 60 * 60, // 7 days
});
return (
<div>
<h1>{organization?.display_name}</h1>
<p>Members: {members.length}</p>
{members.map(member => (
<div key={member.user_id}>
<span>{member.email}</span>
<span>Roles: {member.roles?.map(r => r.name).join(', ')}</span>
</div>
))}
</div>
);
}
import { auth0 } from '@gftdcojp/gftd-auth/auth0-integration';
import { useUser } from '@gftdcojp/gftd-auth/client';
export default function OrganizationSelection() {
const { user } = useUser();
const [organizations, setOrganizations] = useState([]);
useEffect(() => {
if (user) {
auth0.organizations.getUserOrganizations(user.sub)
.then(setOrganizations);
}
}, [user]);
const selectOrganization = (orgId: string) => {
const loginUrl = buildOrganizationLoginUrl({
organizationId: orgId,
returnTo: '/dashboard',
});
window.location.href = loginUrl;
};
return (
<div>
<h1>Select Organization</h1>
{organizations.map(org => (
<div key={org.id} onClick={() => selectOrganization(org.id)}>
<h3>{org.display_name}</h3>
<p>{org.name}</p>
</div>
))}
</div>
);
}
interface OrganizationConfig {
// Fixed organization ID (for single-tenant)
organizationId?: string;
// Organization name
organizationName?: string;
// Auto-accept invitations
autoAcceptInvitations?: boolean;
// Require organization context
requireOrganization?: boolean;
// Organization selection page URL
organizationSelectionUrl?: string;
}
// Available routes
/auth/organization/login // Organization login
/auth/organization/callback // Organization callback
/auth/select-organization // Organization selection
/auth/organization/invitation // Invitation acceptance
import { useUser, useLogout } from '@gftdcojp/gftd-auth/client';
export default function AuthButton() {
const { user, isLoading } = useUser();
const logout = useLogout();
if (isLoading) return <div>Loading...</div>;
if (user) {
return (
<div className="flex items-center gap-4">
<span>Welcome, {user.user_metadata?.name}!</span>
{user.organization_id && (
<span className="text-sm text-gray-600">
Org: {user.metadata?.organization?.name}
</span>
)}
<button onClick={() => logout()}>Logout</button>
</div>
);
}
return <a href="/auth/login">Login</a>;
}
import { withPageAuthRequired, useUser } from '@gftdcojp/gftd-auth/client';
export default withPageAuthRequired(function Dashboard() {
const { user } = useUser();
return (
<div>
<h1>Dashboard</h1>
<p>Welcome back, {user?.user_metadata?.name}!</p>
{user?.organization_id && (
<div>
<h2>Organization: {user.metadata?.organization?.name}</h2>
<p>Your roles: {user.metadata?.organization_roles?.join(', ')}</p>
</div>
)}
</div>
);
});
Step 1: Update Import Paths
// Old:
import { useUser } from '@auth0/nextjs-auth0/client';
import { getSession } from '@auth0/nextjs-auth0';
// New:
import { useUser } from '@gftdcojp/gftd-auth/client';
import { getSession } from '@gftdcojp/gftd-auth/nextjs-auth0';
Step 2: Environment Variables (No changes needed) Existing Auth0 environment variables work as-is.
π Step 3: Leverage Organization Features (Optional)
// Add organization features
import { getSessionWithOrganization, buildOrganizationLoginUrl } from '@gftdcojp/gftd-auth/nextjs-auth0';
| Phase | Status | Completion | Release Date |
|---|---|---|---|
| Phase 1: Foundation | β Complete | 100% | β Complete |
| Phase 2: Auth0 Integration | β Complete | 100% | β Complete |
| Phase 3: Organizations Support | β Complete | 100% | β Complete |
| Phase 4: Production Release | β Complete | 100% | β v1.0.0 Published |
NextJsAuth0Client.getSession() fully implementedNextJsAuth0Client.middleware() fully implementedlogin, logout, callback) fully implementedimport {
getSession, // Get user session
getSessionWithOrganization, // π Get session with organization context
getAccessToken, // Get access token
updateSession, // Update session
withApiAuthRequired, // API protection
withOrganizationApiAuthRequired, // π Organization API protection
withMiddlewareAuthRequired, // Middleware protection
withOrganizationAuthRequired, // π Organization middleware protection
auth0Middleware, // Direct middleware
buildOrganizationLoginUrl, // π Generate organization login URL
} from '@gftdcojp/gftd-auth/nextjs-auth0';
import {
useUser, // Get current user
useAccessToken, // Get access token
useLogout, // Logout function
UserProvider, // Context provider
withPageAuthRequired, // Component protection
AuthenticatedLayout, // Authentication layout
} from '@gftdcojp/gftd-auth/client';
import { auth0 } from '@gftdcojp/gftd-auth/auth0-integration';
// Organization management
const organization = await auth0.organizations.get(orgId);
const organizations = await auth0.organizations.getUserOrganizations(userId);
// Member management
const members = await auth0.organizations.getMembers(orgId);
await auth0.organizations.addMember(orgId, userId, roles);
await auth0.organizations.removeMember(orgId, userId);
// Invitation management
const invitation = await auth0.organizations.createInvitation(orgId, email, options);
const invitations = await auth0.organizations.getInvitations(orgId);
import { SafeAuthComponent } from '@gftdcojp/gftd-auth/components';
git checkout -b feature/amazing-feature)git commit -m 'Add some amazing feature')git push origin feature/amazing-feature)MIT License - See LICENSE file for details.
π Production Release Complete
Final Status (January 2025)
β Production Ready: Start using it now!
FAQs
β Enterprise-grade Auth0 integration for GFTD platform - Fully implemented with Organizations support
We found that @gftdcojp/gftd-auth demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago.Β It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
/Research
Socket found a Rust typosquat (finch-rust) that loads sha-rust to steal credentials, using impersonation and an unpinned dependency to auto-deliver updates.
Research
/Security Fundamentals
A pair of typosquatted Go packages posing as Googleβs UUID library quietly turn helper functions into encrypted exfiltration channels to a paste site, putting developer and CI data at risk.
Security News
November CVE publications fell 25% YoY even as 2025 totals rose, showing how a few major CNAs can swing βglobalβ counts and skew perceived risk.