Better AuthBA
Better Auth9mo ago
Arthur Mendes

Getting FORBIDDEN (403) error when using authClient.admin

Auth config:
export const auth = betterAuth({
  database: prismaAdapter(prisma, { provider: "mysql" }),

  user: {
    additionalFields: {
      document: {
        type: "string",
      },
    },
  },

  plugins: [
    admin({
      adminRoles: [Role.ADMIN],
      defaultRole: Role.AUDITOR,
    }),
    expo(),
  ],

  trustedOrigins: [process.env.APP_URL ?? raise("APP_URL not set"), "locsystem://"],

  emailAndPassword: { enabled: true },
});


Calling this code to change role
authClient.admin.setRole({
  userId: user.id,
  role: data.role,
  fetchOptions: { throw: true },
})


It also happens when creating a new user. The solution for now is call this functions server side but it would be nice if this works well.

I'm logged as an ADMIN and the response is:
image.png
Solution
https://github.com/better-auth/better-auth/pull/2128
GitHub
fix(admin): defaultRoles, adminRoles + others not applying user con...
Additional info:
https://discord.com/channels/1288403910284935179/1357780287571886120/1357780287571886120
Jump to solution
Was this page helpful?