16 replies

Getting FORBIDDEN (403) error when using authClient.admin

Auth config:

export const auth = betterAuth({
  database: prismaAdapter(prisma, { provider: "mysql" }),

  user: {
    additionalFields: {
      document: {
        type: "string",
      },
    },
  },

  plugins: [
    admin({
      adminRoles: [Role.ADMIN],
      defaultRole: Role.AUDITOR,
    }),
    expo(),
  ],

  trustedOrigins: [process.env.APP_URL ?? raise("APP_URL not set"), "locsystem://"],

  emailAndPassword: { enabled: true },
});

export const auth = betterAuth({
  database: prismaAdapter(prisma, { provider: "mysql" }),

  user: {
    additionalFields: {
      document: {
        type: "string",
      },
    },
  },

  plugins: [
    admin({
      adminRoles: [Role.ADMIN],
      defaultRole: Role.AUDITOR,
    }),
    expo(),
  ],

  trustedOrigins: [process.env.APP_URL ?? raise("APP_URL not set"), "locsystem://"],

  emailAndPassword: { enabled: true },
});

Calling this code to change role

authClient.admin.setRole({
  userId: user.id,
  role: data.role,
  fetchOptions: { throw: true },
})

authClient.admin.setRole({
  userId: user.id,
  role: data.role,
  fetchOptions: { throw: true },
})

It also happens when creating a new user. The solution for now is call this functions server side but it would be nice if this works well.

I'm logged as an ADMIN and the response is:

Solution

https://github.com/better-auth/better-auth/pull/2128

GitHub

fix(admin): defaultRoles, adminRoles + others not applying user con...

Additional info:
https://discord.com/channels/1288403910284935179/1357780287571886120/1357780287571886120

Jump to solution

Better Auth•11mo ago•

16 replies

Arthur Mendes

Getting FORBIDDEN (403) error when using authClient.admin

Auth config:

export const auth = betterAuth({
  database: prismaAdapter(prisma, { provider: "mysql" }),

  user: {
    additionalFields: {
      document: {
        type: "string",
      },
    },
  },

  plugins: [
    admin({
      adminRoles: [Role.ADMIN],
      defaultRole: Role.AUDITOR,
    }),
    expo(),
  ],

  trustedOrigins: [process.env.APP_URL ?? raise("APP_URL not set"), "locsystem://"],

  emailAndPassword: { enabled: true },
});

export const auth = betterAuth({
  database: prismaAdapter(prisma, { provider: "mysql" }),

  user: {
    additionalFields: {
      document: {
        type: "string",
      },
    },
  },

  plugins: [
    admin({
      adminRoles: [Role.ADMIN],
      defaultRole: Role.AUDITOR,
    }),
    expo(),
  ],

  trustedOrigins: [process.env.APP_URL ?? raise("APP_URL not set"), "locsystem://"],

  emailAndPassword: { enabled: true },
});

Calling this code to change role

authClient.admin.setRole({
  userId: user.id,
  role: data.role,
  fetchOptions: { throw: true },
})

authClient.admin.setRole({
  userId: user.id,
  role: data.role,
  fetchOptions: { throw: true },
})

It also happens when creating a new user. The solution for now is call this functions server side but it would be nice if this works well.

I'm logged as an ADMIN and the response is:

Solution

https://github.com/better-auth/better-auth/pull/2128

GitHub

fix(admin): defaultRoles, adminRoles + others not applying user con...

Additional info:
https://discord.com/channels/1288403910284935179/1357780287571886120/1357780287571886120

Jump to solution

Getting FORBIDDEN (403) error when using authClient.admin

Similar Threads

Getting FORBIDDEN (403) error when using authClient.admin

Similar Threads

Similar Threads

Similar Threads