Unable to set a role based authentication

[Seeeev]

My issue is within the session callback, I can't seem to retrieve a role and put it in a session. "token.role" and "user.role" are both undefined.

1. api/auth[...nextauth]/route.ts

import CredentialsProvider from "next-auth/providers/credentials";
import { PrismaAdapter } from "@auth/prisma-adapter";
import prisma from "@/prisma";
import { compareSync } from "bcrypt-ts";
import NextAuth from "next-auth/next";

const handler = NextAuth({
  adapter: PrismaAdapter(prisma),
  callbacks: {
   session({ session, token,  user }) {
      // token.role is undefined
      // user.role "Cannot read properties of undefined (reading 'role')"
      session.user.role = "asdasd" // can't get the role so i just put a random text
      return session
    }
  },
  session: {    
    strategy: "jwt",
  },
  providers: [
    CredentialsProvider({   
      name: "Credentials",
      credentials: {
        email: { label: "Email", type: "email" },
        password: { label: "Password", type: "password" },
      },
      async authorize(credentials, req) {
        if (!credentials?.email || !credentials.password) {
          return null;
        }
        const user = await prisma.user.findUnique({
          where: {
            email: credentials.email,
          },
        });
        if (!user) {
          return null;
        }
        const passwordsMatched = compareSync(
          credentials.password,
          user.password
        );

        console.log(user)
        if (!passwordsMatched) {
          return null;
        }
        return user;
        // 'user' data retrieved:
        // {
        //   id: 'clqa7a0gh0000k9a1x70nfjq3',
        //   name: 'admin',
        //   email: '[email protected]',
        //   password: 'some password',
        //   emailVerified: null,
        //   image: null,
        //   role: 'admin'
        // }
      },
    }),
  ],
  secret: process.env.NEXTAUTH_SECRET,
  debug: process.env.NODE_ENV === "development",
});
export { handler as GET, handler as POST };

2. types/auth.ts

import {
  type DefaultSession,
  type DefaultUser,
} from "next-auth";   

declare module "next-auth" {
  interface Session extends DefaultSession {
    user: DefaultSession["user"] & {
      role?: string;
    };
  }
  interface User extends DefaultUser {
    role?: string;
  }
}

declare module "next-auth/jwt" {
  interface JWT {
    role?: string;
  }
}

3. prisma.schema

...
enum Role {
  admin
  user
}

model User {
  id            String    @id @default(cuid())
  name          String?
  email         String?   @unique
  password      String
  emailVerified DateTime?
  image         String?
  role          Role      @default(admin)
  accounts      Account[]
  sessions      Session[]
}

[kaleembhattiworks]

I am facing the same problem.
Did you find a solution ?

[themixednuts]

Same issue myself, seem's like just manually retrieving the role column in session callback is the way to go for now unfortunately.

[gimonaa]

Same issue.
Did you find a solution?
Thanks

[kaleembhattiworks]

Doing what @themixednuts did is the only solution for the time being, I guess

[jorgezerpa]

Hi! I fixed by adding also the JWT method to the callbacks:

    callbacks: {
      async jwt(params) {
        if(params.user) {
          params.token.role = params.user.role
        }
        return params.token
      },
      session({session,token}) {
        session.user.role = token.role
        return session
      }
    }
    ```
    
    Also make sure that the user object you are returning from the authorize function of the credentialsProvider has the role value