DEV Community: Chirag Gupta The latest articles on DEV Community by Chirag Gupta (@chirag__dev). https://dev.to/chirag__dev https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1157206%2Ff10ae3fb-1192-4c27-ac8f-c7598d2fe425.jpg DEV Community: Chirag Gupta https://dev.to/chirag__dev en Using Intersection Observer API in React Chirag Gupta Mon, 16 Oct 2023 12:43:05 +0000 https://dev.to/chirag__dev/using-intersection-observer-api-in-react-2hhl https://dev.to/chirag__dev/using-intersection-observer-api-in-react-2hhl <p>This article is about using the Intersection Observer API to enhance the visual experience of web applications. We will see the usage of this API in both HTML/CSS projects and React applications.</p> <h2> What is Intersection Observer API? (with a working example) </h2> <p>The <a href="https://developer.mozilla.org/en-US/docs/Web/API/Intersection_Observer_API">Intersection Observer API</a> provides us with a way to take some action asynchronously whenever a particular element that we are observing comes or goes out from the viewport / or a specified container. Let's understand it using an example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">//used in the codesandbox(Vanilla js) below:</span> <span class="kd">const</span> <span class="nx">supportContainer</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nx">querySelector</span><span class="p">(</span><span class="dl">"</span><span class="s2">.supporting</span><span class="dl">"</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">sectObserver</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">IntersectionObserver</span><span class="p">(</span> <span class="p">(</span><span class="nx">entries</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">entries</span><span class="p">.</span><span class="nx">forEach</span><span class="p">((</span><span class="nx">entry</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">entry</span><span class="p">.</span><span class="nx">target</span><span class="p">.</span><span class="nx">classList</span><span class="p">.</span><span class="nx">toggle</span><span class="p">(</span><span class="dl">"</span><span class="s2">blockAnimation</span><span class="dl">"</span><span class="p">,</span> <span class="nx">entry</span><span class="p">.</span><span class="nx">isIntersecting</span><span class="p">);</span> <span class="p">});</span> <span class="p">},</span> <span class="p">{</span> <span class="na">threshold</span><span class="p">:</span> <span class="mi">0</span><span class="p">,</span> <span class="na">rootMargin</span><span class="p">:</span> <span class="dl">"</span><span class="s2">-100px</span><span class="dl">"</span> <span class="p">}</span> <span class="p">);</span> <span class="nx">sectObserver</span><span class="p">.</span><span class="nx">observe</span><span class="p">(</span><span class="nx">supportContainer</span><span class="p">);</span> </code></pre> </div> <p>Let's break this down:</p> <ul> <li><p>We create a new Intersection Observer using <code>new IntersectionObserver(callback,options)</code> syntax. This callback is triggered when it initially attaches to the DOM element and each time the element intersects based on the specified options.</p></li> <li><p>Threshold value: A threshold of value 0 means that when any part of the observed element becomes visible, the <code>isIntersecting</code> property changes to true.</p></li> <li><p>RootMargin: rootMargin is used to set the margins of the root property. In our case, root is the viewport. We are using the rootMargin property of <code>-100px</code> because of the footer height.</p></li> <li><p>Callback: we pass a callback to the observer which toggles a blockAnimation class on our element based on the boolean value of <code>isIntersecting</code> property.</p></li> </ul> <p>Codesandbox example using HTML, CSS, and Javascript:</p> <p>Notice the slide-in effect of the supporting container in the codesandbox preview.</p> <p><iframe src="https://codesandbox.io/embed/29fyv7"> </iframe> </p> <h2> Infinite scroll in React: </h2> <p>Infinite scrolling is a popular feature in modern web applications. It is generally implemented using the intersection observer API. This section explains how to implement this feature, showcasing an example.</p> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--iVOrL_2e--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/ywm773q4qw8rbs36sy0q.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--iVOrL_2e--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/ywm773q4qw8rbs36sy0q.png" alt="Image showing custom infinite scroll example" width="800" height="394"></a></p> <p>Link: <a href="https://custom-infinite-scroll-react.netlify.app/">https://custom-infinite-scroll-react.netlify.app/</a></p> <h3> Idea: </h3> <p>The idea behind infinite scrolling is simple, let's understand it:</p> <ul> <li><p>We always observe the last item in the DOM using Intersection Observer API.</p></li> <li><p>Whenever the last item comes into the view (intersects), we call the API to fetch the next set of items.</p></li> <li><p>We disconnect the observer from the previous last item and connect it to the latest last item.</p></li> </ul> <h3> Code: </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">App</span><span class="p">:</span> <span class="nx">React</span><span class="p">.</span><span class="nx">FunctionComponent</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">pageNumber</span><span class="p">,</span> <span class="nx">setPageNumber</span><span class="p">]</span> <span class="o">=</span> <span class="nx">useState</span><span class="p">(</span><span class="mi">1</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">todos</span><span class="p">,</span> <span class="nx">setTodos</span><span class="p">]</span> <span class="o">=</span> <span class="nx">useState</span><span class="o">&lt;</span><span class="nx">todo</span><span class="p">[]</span><span class="o">&gt;</span><span class="p">([]);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">loading</span><span class="p">,</span> <span class="nx">setLoading</span><span class="p">]</span> <span class="o">=</span> <span class="nx">useState</span><span class="p">(</span><span class="kc">false</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">observer</span> <span class="o">=</span> <span class="nx">useRef</span><span class="o">&lt;</span><span class="nx">IntersectionObserver</span><span class="o">&gt;</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">lastTodo</span> <span class="o">=</span> <span class="nx">useCallback</span><span class="p">((</span><span class="na">node</span><span class="p">:</span> <span class="nx">Element</span> <span class="o">|</span> <span class="kc">null</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nx">log</span><span class="p">(</span><span class="nx">node</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nx">node</span> <span class="o">!=</span> <span class="kc">null</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// to check if the node exists</span> <span class="k">if</span> <span class="p">(</span><span class="nx">observer</span><span class="p">.</span><span class="nx">current</span><span class="p">)</span> <span class="nx">observer</span><span class="p">.</span><span class="nx">current</span><span class="p">.</span><span class="nx">disconnect</span><span class="p">();</span> <span class="nx">observer</span><span class="p">.</span><span class="nx">current</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">IntersectionObserver</span><span class="p">(</span> <span class="p">(</span><span class="nx">entries</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">firstEntry</span> <span class="o">=</span> <span class="nx">entries</span><span class="p">[</span><span class="mi">0</span><span class="p">];</span> <span class="k">if</span> <span class="p">(</span><span class="nx">firstEntry</span><span class="p">.</span><span class="nx">isIntersecting</span><span class="p">)</span> <span class="p">{</span> <span class="nx">setPageNumber</span><span class="p">((</span><span class="nx">n</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">n</span> <span class="o">+</span> <span class="mi">1</span><span class="p">);</span> <span class="p">}</span> <span class="p">},</span> <span class="p">{</span> <span class="na">threshold</span><span class="p">:</span> <span class="mi">1</span><span class="p">,</span> <span class="p">}</span> <span class="p">);</span> <span class="nx">observer</span><span class="p">.</span><span class="nx">current</span><span class="p">.</span><span class="nx">observe</span><span class="p">(</span><span class="nx">node</span><span class="p">);</span> <span class="p">}</span> <span class="p">},</span> <span class="p">[]);</span> <span class="c1">//this useEffect runs whenever the pageNumber gets changed</span> <span class="nx">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">fetchTodos</span><span class="p">(</span><span class="nx">pageNumber</span><span class="p">,</span> <span class="nx">setTodos</span><span class="p">,</span> <span class="nx">setLoading</span><span class="p">);</span><span class="c1">//fetches todos based on pageNumber</span> <span class="p">},</span> <span class="p">[</span><span class="nx">pageNumber</span><span class="p">]);</span> <span class="c1">//JSX</span> <span class="k">return</span> <span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">app</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">header</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">header</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">h1</span><span class="o">&gt;</span><span class="nx">Custom</span> <span class="nx">Infinite</span> <span class="nx">Scroll</span><span class="o">&lt;</span><span class="sr">/h1</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/header</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="nx">main</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">container</span><span class="dl">"</span><span class="o">&gt;</span> <span class="p">{</span><span class="nx">todos</span><span class="p">.</span><span class="nx">length</span> <span class="p">?</span> <span class="nx">todos</span><span class="p">.</span><span class="nx">map</span><span class="p">((</span><span class="nx">todo</span><span class="p">,</span> <span class="nx">index</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">(</span> <span class="o">&lt;</span><span class="nx">p</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">todo</span><span class="dl">"</span> <span class="nx">key</span><span class="o">=</span><span class="p">{</span><span class="nx">todo</span><span class="p">.</span><span class="nx">id</span><span class="p">}</span> <span class="nx">ref</span><span class="o">=</span><span class="p">{</span><span class="nx">index</span> <span class="o">===</span> <span class="nx">todos</span><span class="p">.</span><span class="nx">length</span> <span class="o">-</span> <span class="mi">1</span> <span class="p">?</span> <span class="nx">lastTodo</span> <span class="p">:</span> <span class="kc">null</span><span class="p">}</span> <span class="o">&gt;</span> <span class="p">{</span><span class="nx">todo</span><span class="p">.</span><span class="nx">title</span><span class="p">}</span> <span class="o">&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="p">))</span> <span class="p">:</span> <span class="dl">""</span><span class="p">}</span> <span class="o">&lt;</span><span class="nx">div</span><span class="o">&gt;</span><span class="p">{</span><span class="nx">loading</span> <span class="p">?</span> <span class="dl">"</span><span class="s2">Loading...</span><span class="dl">"</span> <span class="p">:</span> <span class="dl">""</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/main</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="nx">footer</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">footer</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">p</span><span class="o">&gt;</span><span class="nx">Intersection</span> <span class="nx">Observer</span> <span class="nx">API</span><span class="o">&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/footer</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">};</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">App</span><span class="p">;</span> </code></pre> </div> <p>Let's break this down:</p> <p>We declare three state variables:</p> <ol> <li><p><code>pageNumber</code>: to increase the page number when reaching the end of the page.</p></li> <li><p><code>todos</code>: an array of todos.</p></li> <li><p><code>loading</code>: to indicate the loading state.</p></li> </ol> <p>We initialize an observer using <code>useRef</code> and <code>lastTodo</code> using <code>useCallback</code>.</p> <p>We can pass either a <code>useRef</code> reference to the <code>ref</code> attribute or a function to the <code>ref</code> attribute (callback ref). In our case, we are using the latter.</p> <p><code>useCallback</code> is a better option in this case because the callback that we pass to <code>useCallback</code> gets called every time it attaches itself to a DOM element. Specifically, when the component using this callback as a ref mounts, this callback gets called with the element as an argument. When this component unmounts, the callback gets called with <code>null</code> as an argument.</p> <p>So, whenever the callback gets called, here's what happens:</p> <ul> <li><p>We check if the node (element) is present or not; if it is, we proceed.</p></li> <li><p>If an observer is already observing an element, we disconnect the observer.</p></li> <li><p>We connect the observer to the new element.</p></li> </ul> <p>When this element intersects our viewpoint, the <code>pageNumber</code> gets incremented. Whenever the <code>pageNumber</code> increases, the <code>useEffect</code> runs and fetches the next set of todos.</p> <p>If you want to view the full code of the mentioned example: <a href="https://github.com/Hardiegogo/intersection-observer-mock">https://github.com/Hardiegogo/intersection-observer-mock</a></p> <p>I hope you found this article helpful, see you in the next one!</p> <p>Connect with me on <a href="https://twitter.com/Chirag__dev"><strong>Twitter</strong></a> | <a href="https://www.linkedin.com/in/chirag-dev/"><strong>Linkedin</strong></a> | <a href="https://github.com/Hardiegogo"><strong>Github</strong></a></p> <p>Happy Coding! 🎈🎈</p> webdev javascript react typescript Authentication in Next.js using NextAuth.js Chirag Gupta Sat, 09 Sep 2023 15:40:29 +0000 https://dev.to/chirag__dev/authentication-in-nextjs-using-nextauthjs-597k https://dev.to/chirag__dev/authentication-in-nextjs-using-nextauthjs-597k <p>If you are a front-end developer, thinking about authentication can be quite challenging. In authentication, from storing JWT in local storage to managing cookies, we consider it all. NextAuth.js is currently the most popular library for handling authentication in your Next.js projects.</p> <h2> <strong>What will we use?</strong> </h2> <p>In this guide, we will be using the <strong>NextAuth.js</strong> credentials provider, so that we can set up custom fields for authentication. These fields will be username and password. On the Next.js side, we will be using API routes (pages router) as these are currently being used in most of the codebases. We will also use our custom login page rather than relying on NextAuth.js's default page.</p> <h2> <strong>Setting Up the Credentials Provider</strong> </h2> <ul> <li><p>App setup - I hope you already have a next app, if not then start by creating one using <a href="https://nextjs.org/docs/getting-started/installation">official docs</a>.</p></li> <li> <p>Start by installing NextAuth.js using :<br> </p> <pre class="highlight plaintext"><code>npm install next-auth </code></pre> </li> <li> <p>Create [...nextauth].ts file under the directory /pages/api/auth/[...nextauth].ts and add the following code :<br> </p> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">NextAuth</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next-auth</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">CredentialsProvider</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next-auth/providers/credentials</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">dbConnect</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">../../../lib/dbConnect</span><span class="dl">'</span><span class="p">;</span> <span class="c1">//import your dbConnect, if you have one.</span> <span class="k">import</span> <span class="nx">User</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">../../../models/userModel</span><span class="dl">'</span><span class="p">;</span> <span class="c1">//ignore this</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Provider</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next-auth/providers</span><span class="dl">'</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">authOptions</span> <span class="o">=</span> <span class="p">{</span> <span class="c1">// Configure one or more authentication providers</span> <span class="na">providers</span><span class="p">:</span> <span class="p">[</span> <span class="nx">CredentialsProvider</span><span class="p">({</span> <span class="na">id</span><span class="p">:</span> <span class="dl">'</span><span class="s1">credentials</span><span class="dl">'</span><span class="p">,</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">credentials</span><span class="dl">'</span><span class="p">,</span> <span class="na">name</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Credentials</span><span class="dl">'</span><span class="p">,</span> <span class="na">credentials</span><span class="p">:</span> <span class="p">{</span> <span class="na">username</span><span class="p">:</span> <span class="p">{</span> <span class="na">label</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Username</span><span class="dl">'</span><span class="p">,</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">text</span><span class="dl">'</span> <span class="p">},</span> <span class="na">password</span><span class="p">:</span> <span class="p">{</span> <span class="na">label</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Password</span><span class="dl">'</span><span class="p">,</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">password</span><span class="dl">'</span> <span class="p">},</span> <span class="p">},</span> <span class="k">async</span> <span class="nx">authorize</span><span class="p">(</span><span class="nx">credentials</span><span class="p">,</span> <span class="nx">req</span><span class="p">)</span> <span class="p">{</span> <span class="c1">//Add logic here to look up the user from the credentials supplied</span> <span class="k">await</span> <span class="nx">dbConnect</span><span class="p">();</span> <span class="c1">// connect to your db, to check the user</span> <span class="k">if</span> <span class="p">(</span><span class="nx">credentials</span><span class="p">?.</span><span class="nx">password</span><span class="p">?.</span><span class="nx">length</span> <span class="o">&amp;&amp;</span> <span class="nx">credentials</span><span class="p">?.</span><span class="nx">username</span><span class="p">?.</span><span class="nx">length</span><span class="p">)</span> <span class="p">{</span> <span class="c1">//I am using a mongoose model in this example.</span> <span class="kd">const</span> <span class="nx">existingUser</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">User</span><span class="p">.</span><span class="nx">findOne</span><span class="p">({</span> <span class="na">username</span><span class="p">:</span> <span class="nx">credentials</span><span class="p">.</span><span class="nx">username</span><span class="p">,</span> <span class="na">password</span><span class="p">:</span> <span class="nx">credentials</span><span class="p">.</span><span class="nx">password</span><span class="p">,</span> <span class="p">});</span> <span class="k">if</span> <span class="p">(</span><span class="nx">existingUser</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">existingUser</span><span class="p">;</span> <span class="p">}</span> <span class="k">else</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="p">},</span> <span class="p">}),</span> <span class="p">]</span> <span class="k">as</span> <span class="nx">Provider</span><span class="p">[],</span> <span class="na">secret</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">NEXTAUTH_SECRET</span><span class="p">,</span> <span class="na">session</span><span class="p">:</span> <span class="p">{</span> <span class="na">strategy</span><span class="p">:</span> <span class="dl">'</span><span class="s1">jwt</span><span class="dl">'</span><span class="p">,</span> <span class="na">maxAge</span><span class="p">:</span> <span class="mi">30</span> <span class="o">*</span> <span class="mi">24</span> <span class="o">*</span> <span class="mi">60</span> <span class="o">*</span> <span class="mi">60</span><span class="p">,</span> <span class="p">},</span> <span class="na">jwt</span><span class="p">:</span> <span class="p">{</span> <span class="na">encryption</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="p">},</span> <span class="na">pages</span><span class="p">:</span> <span class="p">{</span> <span class="na">signIn</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/login</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="c1">// callbacks in the next section</span> <span class="p">};</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">NextAuth</span><span class="p">(</span><span class="nx">authOptions</span><span class="p">);</span> </code></pre> </li> </ul> <p>Let's break this code snippet piece by piece :</p> <ul> <li><p>As we are using the Credentials provider, we start by adding the provider to the provider list. We mention the id as "credentials" to <strong>access this provider</strong> on the frontend side while using the custom sign-in page. We also mention the type as "credentials" as we are using the same type.</p></li> <li><p>In the next part, we define a credentials object which tells NextAuth about what kind of fields, we are dealing with. In this case, these fields are <strong>username and password</strong>.</p></li> <li><p>Next, we define an async function called "authorize" which NextAuth uses while authentication, this function gets called up when we click on the <strong>login/sign-in button</strong>. In this function, we write the logic to verify the user credentials and if the user exists, we return the user otherwise we return null or we can throw an error.</p></li> <li><p>Next, we define a secret variable, which will be our JWT secret (store it in .env.local at the root of your project).</p></li> <li><p>In the next part, we define the session object which declares our strategy as jwt and maxAge of 30 days(you can use whatever value you like). This defines the duration for which our user session will remain active, once logged in. We also set the jwt encryption to true, which encrypts our token.</p></li> <li><p>For the custom sign-in page, we define the page route to our <strong>custom login</strong> page in the pages object.</p></li> </ul> <h3> <strong>Callbacks (JWT and Session)</strong> </h3> <ul> <li> <p>Extend the above-mentioned credentials provider by adding the callbacks setup below<br> </p> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">const</span> <span class="nx">authOptions</span><span class="p">:</span><span class="kr">any</span> <span class="o">=</span> <span class="p">{</span> <span class="na">providers</span><span class="p">:</span> <span class="p">[</span> <span class="nx">CredentialsProvider</span><span class="p">({</span> <span class="c1">// above mentioned code,</span> <span class="na">callbacks</span><span class="p">:</span> <span class="p">{</span> <span class="na">jwt</span><span class="p">:</span> <span class="k">async</span> <span class="p">({</span> <span class="nx">token</span><span class="p">,</span> <span class="nx">user</span> <span class="p">})</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="nx">user</span><span class="p">)</span> <span class="p">{</span> <span class="nx">token</span><span class="p">.</span><span class="nx">username</span><span class="o">=</span> <span class="nx">user</span><span class="p">.</span><span class="nx">username</span><span class="p">;</span> <span class="nx">token</span><span class="p">.</span><span class="nx">id</span><span class="o">=</span><span class="nx">user</span><span class="p">.</span><span class="nx">_id</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">token</span><span class="p">;</span> <span class="p">},</span> <span class="na">session</span><span class="p">:</span> <span class="p">({</span> <span class="nx">session</span><span class="p">,</span> <span class="nx">token</span> <span class="p">})</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="nx">token</span><span class="p">)</span> <span class="p">{</span> <span class="nx">session</span><span class="p">.</span><span class="nx">user</span><span class="p">.</span><span class="nx">username</span> <span class="o">=</span> <span class="nx">token</span><span class="p">.</span><span class="nx">username</span><span class="p">;</span> <span class="nx">session</span><span class="p">.</span><span class="nx">user</span><span class="p">.</span><span class="nx">id</span><span class="o">=</span><span class="nx">token</span><span class="p">.</span><span class="nx">id</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">session</span><span class="p">;</span> <span class="p">},</span> <span class="p">},</span> <span class="p">}</span> </code></pre> </li> <li><p><strong>JWT callback</strong> is invoked whenever a JWT token is created by nextAuth (while sign-in). In this case, we receive token and user as arguments. The argument user is the user returned by the authorize function and the token is something that we can use to persist our user details in our session object.</p></li> <li> <p><strong>Session callback</strong> is invoked whenever we try to access the session on the client or server side. We can extend the user object in the session by using the token that we have received from JWT callback.</p> <p>This callbacks setup is necessary to get the username and the userId, whenever we try to access the session.</p> </li> </ul> <h2> Login page setup </h2> <p>The login page structure and styling depend on your project, so we will just focus on the core functionality. Whenever the user clicks on login after entering the credentials, signIn function from next-auth should be called. Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">signIn</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next-auth/react</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// on button click this clickhandler should be invoked</span> <span class="kd">const</span> <span class="nx">clickHandler</span><span class="p">:</span> <span class="nx">React</span><span class="p">.</span><span class="nx">MouseEventHandler</span><span class="o">&lt;</span><span class="nx">HTMLButtonElement</span><span class="o">&gt;</span> <span class="o">=</span> <span class="k">async</span> <span class="p">(</span><span class="nx">e</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">e</span><span class="p">.</span><span class="nx">preventDefault</span><span class="p">();</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">signIn</span><span class="p">(</span><span class="dl">'</span><span class="s1">credentials</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="nx">username</span><span class="p">,</span> <span class="c1">// entered by the user</span> <span class="nx">password</span><span class="p">,</span> <span class="c1">// entered by the user</span> <span class="na">redirect</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">callbackUrl</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> <span class="k">if</span> <span class="p">(</span><span class="nx">res</span><span class="p">?.</span><span class="nx">status</span> <span class="o">===</span> <span class="mi">200</span><span class="p">)</span> <span class="p">{</span> <span class="nx">addSuccess</span><span class="p">(</span><span class="dl">'</span><span class="s1">Successfully logged in</span><span class="dl">'</span><span class="p">);</span> <span class="c1">//custom function for toast notification, you can just use console.log()</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">addError</span><span class="p">(</span><span class="dl">'</span><span class="s1">error signing in</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// Here, you can also redirect based on successfull authentication using useRouter</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="nx">isAxiosError</span><span class="p">(</span><span class="nx">error</span><span class="p">))</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="nx">error</span><span class="p">.</span><span class="nx">response</span><span class="p">)</span> <span class="p">{</span> <span class="nx">addError</span><span class="p">(</span><span class="nx">error</span><span class="p">.</span><span class="nx">response</span><span class="p">.</span><span class="nx">data</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">};</span> </code></pre> </div> <p>We pass the following arguments to signIn() function from nextAuth:</p> <ul> <li><p>The first argument is your provider id, in our case it is "credentials".</p></li> <li><p>The second argument is an object containing the credentials that we received from the user and some other parameters like redirect and callbackUrl. In our case, we don't need redirection, so we are setting redirect:false .</p></li> </ul> <h2> Finally, let's talk about accessing the session </h2> <p>We have these ways to access the session :</p> <ul> <li> <p><strong>useSession()</strong> hook: This is a hook provided by nextAuth to access the session and the authentication status on the client side :<br> </p> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">useSession</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next-auth/react</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">session</span><span class="p">,</span> <span class="nx">status</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">useSession</span><span class="p">()</span> <span class="c1">//session contains our user object</span> <span class="c1">//status can be authentication | unauthenticated | loading</span> </code></pre> </li> <li><p><strong>getSession()</strong>: This is a function by nextAuth to call an API and get the session. This may be used when you are managing the loading state on your own. However, useSession() is generally used in most cases.</p></li> <li> <p><strong>getServerSession()</strong>: As the name suggests, this function is used to get the session on the server side. This function accepts 3 arguments. Example:<br> </p> <pre class="highlight typescript"><code><span class="c1">//API route example :</span> <span class="k">export</span> <span class="k">default</span> <span class="k">async</span> <span class="kd">function</span> <span class="nx">handler</span><span class="p">(</span> <span class="nx">req</span><span class="p">:</span> <span class="nx">NextApiRequest</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">NextApiResponse</span> <span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="na">session</span><span class="p">:</span> <span class="nx">Session</span> <span class="o">|</span> <span class="kc">null</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">getServerSession</span><span class="p">(</span> <span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">authOptions</span> <span class="c1">//we defined the authOptions in our first snippet</span> <span class="p">);</span> <span class="k">await</span> <span class="nx">dbConnect</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="nx">session</span><span class="p">)</span> <span class="p">{</span> <span class="c1">//if session exists proceed to the backend logic</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nx">status</span><span class="p">(</span><span class="mi">401</span><span class="p">).</span><span class="nx">json</span><span class="p">({</span> <span class="na">message</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Unauthorized</span><span class="dl">'</span> <span class="p">});</span> <span class="p">}</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nx">log</span><span class="p">(</span><span class="nx">error</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </li> </ul> <p>These functions provided by NextAuth make our lives easy.</p> <h2> Securing pages and components </h2> <ul> <li> <p><strong>RequireAuth Wrapper:</strong><br><br> You can use this wrapper to secure pages and components that require authenticated status on the client side.<br> </p> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">React</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">signIn</span><span class="p">,</span> <span class="nx">useSession</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next-auth/react</span><span class="dl">'</span><span class="p">;</span> <span class="kd">function</span> <span class="nx">RequireAuth</span><span class="p">({</span> <span class="nx">children</span> <span class="p">}:</span> <span class="p">{</span> <span class="nl">children</span><span class="p">:</span> <span class="nx">React</span><span class="p">.</span><span class="nx">JSX</span><span class="p">.</span><span class="nx">Element</span> <span class="o">|</span> <span class="kr">string</span> <span class="p">})</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span><span class="nx">status</span><span class="p">}</span><span class="o">=</span><span class="nx">useSession</span><span class="p">()</span> <span class="k">if</span><span class="p">(</span><span class="nx">status</span><span class="o">===</span><span class="dl">"</span><span class="s2">unauthenticated</span><span class="dl">"</span><span class="p">){</span> <span class="nx">signIn</span><span class="p">()</span> <span class="p">}</span> <span class="k">if</span><span class="p">(</span><span class="nx">status</span><span class="o">===</span><span class="dl">"</span><span class="s2">loading</span><span class="dl">"</span><span class="p">){</span> <span class="k">return</span> <span class="o">&lt;</span><span class="nx">Loader</span><span class="o">/&gt;</span> <span class="p">}</span> <span class="k">if</span><span class="p">(</span><span class="nx">status</span><span class="o">===</span><span class="dl">"</span><span class="s2">authenticated</span><span class="dl">"</span><span class="p">){</span> <span class="k">return</span> <span class="o">&lt;&gt;</span><span class="p">{</span><span class="nx">children</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/</span><span class="err">&gt; </span> <span class="p">}</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">RequireAuth</span><span class="p">;</span> </code></pre> </li> <li> <p><strong>Middleware:</strong> NextAuth also provides us with middleware to secure pages: create a middleware.ts file at the same level as the pages directory and use the following code:<br> </p> <pre class="highlight typescript"><code><span class="k">export</span> <span class="p">{</span> <span class="k">default</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next-auth/middleware</span><span class="dl">'</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">config</span> <span class="o">=</span> <span class="p">{</span> <span class="na">matcher</span><span class="p">:</span> <span class="p">[...]</span> <span class="p">};</span> <span class="c1">// add routes to secure pages</span> </code></pre> </li> </ul> <p><strong>Additional advice:</strong> Use the developer tools (Application section) as much as possible, to see your cookies and try to play different scenarios by changing/deleting cookies. This will help you to avoid potential bugs related to authentication.</p> <p>Connect with me on <a href="https://twitter.com/Chirag__dev"><strong>Twitter</strong></a> | <a href="https://www.linkedin.com/in/chirag-dev/"><strong>Linkedin</strong></a> | <a href="https://github.com/Hardiegogo"><strong>Github</strong></a></p> <p>Happy Coding! 🎈🎈</p> nextjs webdev javascript typescript How to solve hydration error in Next.js Chirag Gupta Sat, 09 Sep 2023 15:31:59 +0000 https://dev.to/chirag__dev/how-to-solve-hydration-error-in-nextjs-5e1b https://dev.to/chirag__dev/how-to-solve-hydration-error-in-nextjs-5e1b <p>If you recently transitioned from using React to Next.js, you must've encountered this error "<strong>Error: Hydration failed because the initial UI does not match what was rendered on the server</strong>". Let's understand why this error usually occurs and how to solve it.</p> <h3> What is Hydration? </h3> <p>In Next.js, the first render of the page takes place on the server. This pre-rendered HTML is then served to the client. On the client side, React takes over this HTML page to make this page interactive(Basically it attaches event handlers to the dom nodes). This is Hydration.</p> <h3> Why does this error occur? </h3> <p>During this process React also has a model of how pre-rendered HTML should look like (so that it can attach event handlers for necessary Js interactivity), if the client version of the initial render is not the same as the pre-rendered HTML from the server, we get this error.</p> <h3> Some scenarios, in which this error can arise: </h3> <ul> <li> <p><strong>You are using browser APIs to conditionally render your component/page</strong>: In this case, as the browser APIs (localStorage,sessionStorage) are not available on the server, pre-rendered HTML can differ from the client side.<br> </p> <pre class="highlight typescript"><code><span class="c1">// I will use this atom in the solutions section :)</span> <span class="kd">const</span> <span class="nx">defaultState</span><span class="o">=</span><span class="p">{</span> <span class="na">username</span><span class="p">:</span><span class="dl">""</span><span class="p">,</span> <span class="na">id</span><span class="p">:</span><span class="dl">""</span><span class="p">,</span> <span class="na">isLoggedIn</span><span class="p">:</span><span class="kc">false</span> <span class="p">}</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">adminState</span><span class="o">=</span><span class="nx">atom</span><span class="o">&lt;</span><span class="nx">IAdmin</span><span class="o">&gt;</span><span class="p">({</span> <span class="na">key</span><span class="p">:</span><span class="dl">"</span><span class="s2">currentAdmin</span><span class="dl">"</span><span class="p">,</span> <span class="na">default</span><span class="p">:</span> <span class="p">(</span><span class="k">typeof</span> <span class="nb">window</span> <span class="o">!==</span> <span class="dl">'</span><span class="s1">undefined</span><span class="dl">'</span><span class="p">)</span> <span class="p">?</span> <span class="p">(</span> <span class="nx">localStorage</span><span class="p">.</span><span class="nx">getItem</span><span class="p">(</span><span class="dl">'</span><span class="s1">user</span><span class="dl">'</span><span class="p">)</span> <span class="p">?</span> <span class="nx">JSON</span><span class="p">.</span><span class="nx">parse</span><span class="p">(</span><span class="nx">localStorage</span><span class="p">.</span><span class="nx">getItem</span><span class="p">(</span><span class="dl">'</span><span class="s1">user</span><span class="dl">'</span><span class="p">)</span> <span class="k">as</span> <span class="kr">string</span><span class="p">)</span> <span class="p">:</span> <span class="nx">defaultState</span> <span class="p">)</span> <span class="p">:</span> <span class="nx">defaultState</span> <span class="p">})</span> <span class="c1">//if this state is used to conditionally render, it will cause hydration error</span> </code></pre> <p>While using this recoil state in the component, a hydration error will arise because on the server HTML will be rendered according to the default state and on the client side HTML will be different due to localStorage.</p> </li> <li> <p><strong>Your HTML syntax is not correct</strong>: In this case, you have probably used JSX in some weird way. some examples :<br> </p> <pre class="highlight xml"><code><span class="nt">&lt;p&gt;&lt;div&gt;</span>logout<span class="nt">&lt;/div&gt;&lt;/p&gt;</span> <span class="nt">&lt;p&gt;&lt;p&gt;</span>Your text<span class="nt">&lt;/p&gt;&lt;/p&gt;</span> </code></pre> </li> <li><p><strong>Some browser extensions change the HTML on the client side.</strong></p></li> </ul> <h3> Solutions for this error: </h3> <ul> <li> <p><strong>Reconfigure Logic with useEffect:</strong><br><br> The server ignores useEffect blocks during rendering the HTML on the server side. useEffect only runs on the client side and has access to all the browser APIs.<br> </p> <pre class="highlight typescript"><code><span class="c1">// I am using the above mentioned state atom</span> <span class="kd">const</span> <span class="nx">RequireAuth</span><span class="p">:</span> <span class="nx">React</span><span class="p">.</span><span class="nx">FC</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">children</span><span class="p">:</span> <span class="nx">ReactElement</span> <span class="p">}</span><span class="o">&gt;</span> <span class="o">=</span> <span class="p">({</span> <span class="nx">children</span> <span class="p">})</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">loader</span><span class="p">,</span> <span class="nx">setLoader</span><span class="p">]</span> <span class="o">=</span> <span class="nx">useState</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="nx">useRecoilValue</span><span class="p">(</span><span class="nx">userState</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">router</span> <span class="o">=</span> <span class="nx">useRouter</span><span class="p">();</span> <span class="nx">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">isLoggedIn</span><span class="p">)</span> <span class="p">{</span> <span class="nx">setLoader</span><span class="p">(</span><span class="kc">false</span><span class="p">);</span> <span class="p">}</span> <span class="k">else</span> <span class="nx">router</span><span class="p">.</span><span class="nx">replace</span><span class="p">(</span><span class="dl">'</span><span class="s1">/login</span><span class="dl">'</span><span class="p">);</span> <span class="p">},</span> <span class="p">[]);</span> <span class="k">return</span> <span class="o">&lt;&gt;</span><span class="p">{</span><span class="o">!</span><span class="nx">loader</span> <span class="o">&amp;&amp;</span> <span class="nx">children</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/&gt;</span><span class="err">; </span><span class="p">};</span> <span class="c1">// As user.isLoggedIn depends on localStorage,</span> <span class="c1">// we check for it in the useEffect (client side)</span> </code></pre> </li> <li> <p><strong>Disable SSR on some components which may differ on the client side</strong>:<br> </p> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">dynamic</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next/dynamic</span><span class="dl">'</span><span class="p">;</span> <span class="c1">//code for YourComponent</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">dynamic</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nb">Promise</span><span class="p">.</span><span class="nx">resolve</span><span class="p">(</span><span class="nx">YourComponent</span><span class="p">),</span> <span class="p">{</span> <span class="na">ssr</span><span class="p">:</span> <span class="kc">false</span> <span class="p">});</span> </code></pre> </li> <li><p>In the case of timestamps, pre-rendered HTML will be different from the client version. You can suppress the warning in such cases by using suppressHydrationWarning={true} in the element.</p></li> </ul> <p><strong>Additional Advice</strong>: Rather than rendering an entire page on the client side, consider abstracting the pieces that require client-side rendering into separate components. Utilize the above-mentioned methods to render them, incorporating some tweaks from your end.</p> <p><strong>Note on security:</strong> In the above article, I am storing the JWT token in the localStorage which is not a good practice. A better solution may include authenticating using cookies. If you are using cookies, you can try using getServerSideProps() for getting the authentication status on the server side itself.</p> <p>Connect with me on <a href="https://twitter.com/Chirag__dev"><strong>Twitter</strong></a> | <a href="https://www.linkedin.com/in/chirag-dev/"><strong>Linkedin</strong></a> | <a href="https://github.com/Hardiegogo"><strong>Github</strong></a></p> <p>Happy Coding! 🎈🎈</p> webdev nextjs javascript react Zod for Runtime Validation in Next.js Chirag Gupta Thu, 07 Sep 2023 17:05:11 +0000 https://dev.to/chirag__dev/zod-for-runtime-validation-in-nextjs-3f8i https://dev.to/chirag__dev/zod-for-runtime-validation-in-nextjs-3f8i <h2> Introduction </h2> <p><a href="https://zod.dev/">Zod</a> is a runtime validation library suitable for both backend and frontend. This article will guide you through utilizing Zod in Next.js for securing API routes and performing input validation.</p> <h2> Zod vs. TypeScript </h2> <p><strong>Typescript's</strong> purpose is to provide type-checking capabilities during compilation(development phase). It ensures type safety before runtime.<br><br> <strong>Zod's</strong> primary focus is to catch validation errors during runtime. However, we can also infer types from Zod schemas.</p> <h2> Installing Zod </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>//npm npm install zod //yarn yarn add zod </code></pre> </div> <h2> Creating schemas with Zod </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>const userInputSchema=z.object({ username:z.string().min(3).max(40), // password:z.string().min(6).max(20) }) // Schemas assist with runtime validation. //Getting type from above schema type AdminType=z.infer&lt;typeof userInputSchema&gt; //Admin type will look like this type AdminType = { username: string; password: string; } </code></pre> </div> <p>In the code snippet above, We :</p> <ul> <li><p>Created an object schema using <code>z.object()</code> and then we declared the username and password as strings using <code>z.string()</code> inside the schema.</p></li> <li><p>Used min and max functions, which add checks for the length of the variables.</p></li> <li><p>Used <code>z.infer&lt;typeof Schema&gt;</code> to get the type for the declared Schema.</p></li> </ul> <h3> Complex example </h3> <p>An example containing schema for course details:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>const courseInputSchema=z.object({ title:z.string().min(3).max(150), rating:z.number().positive().min(0).max(5), description:z.string().min(50).max(700), published:z.boolean(), gallery:z.array(z.string().url()),//An array of valid URLs price:z.number().min(0).max(4999), imgLink:z.string() }) type CourseType=z.infer&lt;typeof courseInputSchema&gt; // this translates to type CourseType = { title: string; rating: number; description: string; published: boolean; gallery: string[]; price: number; imgLink: string; } </code></pre> </div> <h2> Using safeParse() to secure API routes </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>//Nextjs API route import type { NextApiRequest, NextApiResponse } from 'next'; import dbConnect from '../../../lib/dbConnect'; import {z} from 'zod' const userInputSchema=z.object({ username:z.string().min(3).max(40), password:z.string().min(6).max(20) }) type AdminType=z.infer&lt;typeof userInputSchema&gt; export default async function handler( req: NextApiRequest, res: NextApiResponse ) { try { await dbConnect(); //connecting to the db const parsedInput=userInputSchema.safeParse(req.body) if(!parsedInput.success){ return res.status(400).json({messsage:"Incorrect input"}) } //further backend logic } catch (error) { console.log(error); } } </code></pre> </div> <p>Let's break this down:</p> <ul> <li><p>We use the <code>safeParse()</code> method from Zod to validate the data from request with our declared inputSchema.</p></li> <li><p><code>safeParse()</code> can give us these outputs:</p></li> <li><p>Before going further into the backend logic, we validate the user input using the schema and if the input is validated, we proceed. Otherwise, we send a response with status code 400 (Read about <a href="https://zod.dev/?id=error-handling">ZodError</a>).</p></li> <li><p>Zod also provides us with another method <code>parse()</code>, it directly throws an error instead of returning us with the above-mentioned outputs. <code>safeParse()</code> is preferred due to its simplicity.</p></li> </ul> <p><strong>Note</strong> : We can do similar stuff in expressjs, by creating a schema and then validating request data before proceeding to further backend logic.</p> <h2> Input validation on the client side </h2> <p>Let's define an user input schema for client-side validation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>//Schema import { z } from 'zod'; const userInputSchema = z.object({ username: z .string() .min(3, 'username must have atleast 3 characters') .max(40, 'username max length should be 40 characters'), password: z .string() .min(6, 'password must have atleast 6 characters') .max(20, 'password max length should be 20 characters'), }); </code></pre> </div> <p>Here, the second argument to the min and max methods are custom error messages. We will use these custom messages in the next section.</p> <h3> Using the above schema in a form </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>const SignupForm = () =&gt; { const [username, setUsername] = useState(''); const [password, setPassword] = useState(''); const [errors, setErrors] = useState&lt;z.inferFlattenedErrors&lt;typeof userInputSchema&gt;&gt;(); //define type for errors const clickHandler: React.MouseEventHandler&lt;HTMLButtonElement&gt; = async ( e ) =&gt; { e.preventDefault(); try { const parsedInput = userInputSchema.safeParse({ username, password }); if (!parsedInput.success) { setErrors(parsedInput.error.flatten()); }else { //proceed to submit the form } } catch (error) { setUsername(''); setPassword(''); console.log(error); } }; return ( &lt;form className="p-4 border border-greyVariant mt-20 text-textColor w-80"&gt; &lt;h2 className="text-center text-2xl"&gt;Signup&lt;/h2&gt; &lt;div className="flex flex-col mt-3"&gt; &lt;label htmlFor="username"&gt;Username:&lt;/label&gt; &lt;input className="outline-none border-primary border-2 rounded-xl px-2 py-1" type="text" id="username" name="username" onChange={(e) =&gt; setUsername(e.target.value)} value={username} /&gt; {errors?.fieldErrors?.username ? ( &lt;p className="text-red-500"&gt;{errors.fieldErrors['username']}&lt;/p&gt; ) : null} &lt;/div&gt; &lt;div className="flex flex-col mt-3"&gt; &lt;label htmlFor="password"&gt;Password:&lt;/label&gt; &lt;input className="outline-none border-primary border-2 rounded-xl px-2 py-1" type="password" id="password" name="password" onChange={(e) =&gt; setPassword(e.target.value)} value={password} /&gt; &lt;/div&gt; {errors?.fieldErrors?.password ? ( &lt;p className="text-red-500"&gt;{errors.fieldErrors['password']}&lt;/p&gt; ) : null} &lt;button className="mt-6 bg-primary px-3 py-2 rounded-xl text-bgColor hover:opacity-90 w-full" onClick={clickHandler} &gt; Signup &lt;/button&gt; &lt;/form&gt; ); }; export default SignupForm; </code></pre> </div> <p>Let's break this down :</p> <ul> <li><p>We declare a state variable "errors", which we will use to display our custom error messages.</p></li> <li><p>Before submitting the form, we validate our input data using <code>safeParse()</code>, and if the input data is incorrect we store the flattened error object in our state variable.</p></li> <li><p>We are displaying the error using <code>errors.fieldErrors["fieldName"]</code>, if it exists.</p></li> <li><p>This will look like:</p></li> </ul> <p><strong>Additional advice</strong> : You can also try using Zod with some form libraries like <a href="https://github.com/react-hook-form/resolvers#zod">react-hook-form</a> and <a href="https://conform.guide/api/zod">conform</a>.</p> <p>I hope you found this article helpful, see you in the next one!</p> <p>Connect with me on <a href="https://twitter.com/Chirag__dev"><strong>Twitter</strong></a> | <a href="https://www.linkedin.com/in/chirag-dev/"><strong>Linkedin</strong></a> | <a href="https://github.com/Hardiegogo"><strong>Github</strong></a></p> <p>Happy Coding! 🎈🎈</p>