1.3.7 twoFactor plugin - bad user type

NestJS Better Auth routes
Without login i can able to call/use sendOtp api for phone verification

Unclear method for default boolean values in additional fields
Error while better-auth is attempting to renew? accessToken with Twitch

getSession does not work when baseURL is set
ExactoptionalPropertyTypes bug wasn’t fixed as stated in 1.3.5 release notes
BETTER AUTH 1.3.5 CRASHES ON NEXTJS
Vue BetterAuth Client - twoFactor.verifyOtp missing redirect/callback URL param
Updated username normalization removed the ability to unnormalized displayUsernames specifically
authClient.subscription.list does a POST request which results in a 404
YOU_CAN_ONLY_SEND_A_VERIFICATION_EMAIL_TO_AN_UNVERIFIED_EMAIL
await authClient.sendVerificationEmail({
email: "user@email.com",
callbackURL: "/" // The redirect URL after verification
})
await authClient.sendVerificationEmail({
email: "user@email.com",
callbackURL: "/" // The redirect URL after verification
})
Not all sessions are revoked when deleting a user
[Stripe Plugin] Restoring Subscription throws a 400 error
authClient.subscription.restore
, I get the following error:
```
[Better Auth]: Error restoring subscription 41 | * Specifically for errors returned from Stripe's REST API.
42 | */
43 | export class StripeError extends Error {...adminRoles Not Working
admin({ adminRoles: ['SUPER_ADMIN'] })
. However, when peforming admin actions, e.g. auth.api.listUsers()
a user who has an active session with role: 'SUPER_ADMIN'
will get the error message [Error [APIError]: You are not allowed to list users]
. However, if I change the users role to admin
they can then call listUsers()
. It seems like the adminRoles
configuration is being ignored.haveIBeenPwned plugin throws on sign in
The password you entered has been compromised. Please choose a different password.
Seems to only happen when the password is shorter than the minimum set in the config, otherwise it throws the expected invalid email or password error...Undocumented method refetch of session
refetch
method of session
(and possibly other atoms) isn't documented in the official docs and isn't recognized by TypeScript.
Example:
```typescript...customSession with cookieCache enabled not returning Set-Cookie header for session_token
Issue with Account Login Failure When Using Prisma, Expo, and genericOAuth