@abir-taheerchecks…abir/remove-better-auth-add-workos → production44 files · +377 −2475review: @rohanprabhureview: @sohamganatrareview: @sarthakreview: @acsrujanreview: @kaavee315review: @anshugarg15updated 2w agoRemove Better Auth entirely — dashboard is migrating to WorkOS.
Better Auth removal (-2,477 lines):
better_auth/ module (instance, dbUtils, plugins, hooks)auth/dash/ routes (catch-all, OAuth metadata, dev_login)refresh_token_grace_period (Better Auth only)BETTER_AUTH_* env vars, dependencies, patches, error codesDB_BETTER_AUTH_FIND/UPDATE with direct Prisma queries in session/info, session/metadata, admin/users/update_metadataresume_marketplace_installWorkOS JWT auth (+519 lines):
workos_auth.ts — validates JWT via JWKS, checks client_id claim (WorkOS tokens don't use aud)jwt_auth.ts — makes audience optional in verifier configauthMiddleware.ts — adds getAuthInfoFromWorkosJwt + dashboard proxy pathresolve_user endpoint (v3.1) — verifies WorkOS token, creates user on first loginvercelHandler.ts — strips /internal-dashboard/ prefix from rewritten URLsaddAuthInfo.ts — logs auth_source in telemetry spans/api/v3.1/auth/workos/resolve_userclient_id claim validationgetOrCreateUserWDefaultOrg🤖 Generated with Claude Code
Based on git blame analysis of 45 file(s):
| Contributor | Contribution | Files |
|---|---|---|
| Zen | 15% | 20 |
| jkomyno | 11% | 14 |
| Himanshu Dixit | 9% | 19 |
| Utkarsh Dixit | 9% | 11 |
| lingalarahul7 | 7% | 16 |
Based on git history, Zen or jkomyno would be good reviewer(s) for this PR.
🤖 Based on git blame with recency weighting (recent edits count more).
