How to sign out inside a jwt callback

[Jaeppetto]

import { refreshAccessToken, socialLogin } from "./app/_services/server/auth/auth";

import NextAuth from "next-auth";
import kakao from "next-auth/providers/kakao";

export const { handlers, signIn, signOut, auth } = NextAuth({
  providers: [
    kakao({
      clientId: process.env.KAKAO_CLIENT_ID,
      clientSecret: process.env.KAKAO_CLIENT_SECRET,
    }),
  ],
  session: {
    strategy: "jwt",
    maxAge: 60 * 60 * 6,
    updateAge: 0,
  },
  callbacks: {
    jwt: async ({ token, account }) => {
      const threshold = 5 * 60 * 1000;

      if (account && account.access_token) {
        // First login
        const response = await socialLogin(account.access_token);

        return {
          ...token,
          accessToken: response.accessToken,
          refreshToken: response.refreshToken,
          expiresAt: Date.now() + 6 * 60 * 60 * 1000,
        };
      } else if ((token.expiresAt as number) - Date.now() <= threshold) {
        // If you have a valid access token
        return token;
      } else {
        // If the access token has expired
        try {
          const response = await refreshAccessToken(token.refreshToken as string);
          return {
            ...token,
            accessToken: response.accessToken,
            expiresAt: Date.now() + 6 * 60 * 60 * 1000,
          };
        } catch (error) {
          // If the refresh token expires
          // TODO: SignOut + Redirect signIn page
          return { ...token };
        }
      }
    },
    session: async ({ session, token }) => {
      if (token?.accessToken) {
        session.sessionToken = token.accessToken.toString();
      }

      return session;
    },
  },
});

Hi,

I'm configuring update logic for access and refresh tokens via the JWT callback. I'm using the token set from the service we are developing, not the token from Credentials.

I want to handle the logic when the server's refresh token expires in the catch statement among the last conditional statements in the JWT callback. However, it seems that the signOut method cannot be called inside the JWT callback.

How can I perform a sign-out from inside the JWT callback? (Inside middleware.ts, the JWT callback is being called via auth().)

Or is there a fundamental issue with my token management logic?

Thank you!

[MarkLyck]

@Jaeppetto I have the same problem. Did you figure out a solution?

[Jaeppetto]

We failed to solve the underlying problem, and changed the flow of logic.

We placed the session checker component directly below the session provider in the root layout to invoke the signOut server action if the session does not exist in the useEffect hook with a pathname as dependency.