Security News
Django Joins curl in Pushing Back on AI Slop Security Reports
Django has updated its security policies to reject AI-generated vulnerability reports that include fabricated or unverifiable content.
By Sarah Gooding - Jun 30, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
next-protected-auth
Advanced tools
next-protected-auth
[](https://codeclimate.com/github/qlaffont/next-protected-auth/maintainability) [
Next Protected Auth
Add protected routes to Next.js. Old Owner: @flexper
Usage
See example folder
API
NextAuthProtectedLogin
Options
| Field Name | Type | Description |
|---|---|---|
| callback | VoidFunction / AsyncVoidFunction | Specify a callback after login (generally redirect to oauth portal) |
| authCallbackURL | string | Specify auth callback url in case of accessToken already exist |
Return: React Component
NextAuthProtectedLogout
Options
| Field Name | Type | Description |
|---|---|---|
| preCallback | VoidFunction / AsyncVoidFunction | Specify a callback before logout (generally send to api that user want to logout) |
| callback | VoidFunction / AsyncVoidFunction | Specify a callback after logout (generally redirect to home) |
Return: React Component
NextAuthProtectedCallback
Options
| Field Name | Type | Description |
|---|---|---|
| callback | VoidFunction / AsyncVoidFunction | Specify a callback after auth callback (generally redirect to protected routes) |
Return: React Component
useNextAuthProtectedHandler
Options
| Field Name | Type | Description |
|---|---|---|
| publicURLs | string[] | List of public URLs |
| loginURL | string | Endpoint for login (ex: /auth/login) |
| authCallbackURL | string | Endpoint for auth callback (ex: /auth) |
| renewTokenFct | (oldAccessToken?: string) => string | Function who will run to renew token (ex: refresh token) |
| verifyTokenFct | (accessToken?: string) => string | Function who test accessToken validity (ex: verify JWT token expiration) |
| allowNotFound | boolean? | Allow to consult Not found pages in public |
Return: Hook who need to be use to pages/_app.tsx
useNextAuthProtected
Return: {isConnected: boolean; setIsConnected: Dispatch} // User is connected
getAndSaveAccessToken
Options
| Field Name | Type | Description |
|---|---|---|
| renewTokenFct | (oldAccessToken?: string) => string OR Promise | Function who will run to renew token (ex: refresh token) to |
| accessToken | string | access token to save |
Return: boolean (Token is saved)
getAccessToken
Return: string (Return access token)
removeAccessToken
Return: void
Maintain
This package use TSdx. Please check documentation to update this package.
FAQs
[](https://codeclimate.com/github/qlaffont/next-protected-auth/maintainability) [
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
ECMAScript 2025 Finalized with Iterator Helpers, Set Methods, RegExp.escape, and More
ECMAScript 2025 introduces Iterator Helpers, Set methods, JSON modules, and more in its latest spec update approved by Ecma in June 2025.
By Sarah Gooding - Jun 26, 2025
Security News
Node.js Homepage Adds Paid Support Link, Prompting Contributor Pushback
A new Node.js homepage button linking to paid support for EOL versions has sparked a heated discussion among contributors and the wider community.
By Sarah Gooding - Jun 25, 2025