Skip to main content

Documentation Index

Fetch the complete documentation index at: https://mintlify.com/get-convex/better-auth/llms.txt

Use this file to discover all available pages before exploring further.

Better Auth guide

Better Auth’s basic usage guide applies to Convex as well. It covers signing in and out, social providers, plugins, and more. You will be using Better Auth directly in your project, so their guides are a primary reference.

Exceptions

There are a few areas in the Better Auth basic usage guide that work differently in Convex.
Better Auth supports signing users in and out through server side functions. Because Convex functions run over websockets and don’t return HTTP responses or set cookies, signing up/in/out must be done from the client via authClient.signIn.* methods.
The basic usage guide includes information on database schema generation and migrations via the Better Auth CLI. This only applies for Local Install, which supports generating schemas. For projects not using local install, the default schema provided with the Better Auth component (preconfigured with the supported plugins) is used, and cannot be altered.

Using server methods with auth.api

Better Auth’s server side auth.api methods can be used with your createAuth function and the component headers method. The authComponent.getAuth(createAuth, ctx) call returns both an auth object and headers constructed from the current session token. Here’s an example implementing the changePassword server method:
convex/users.ts
export const updateUserPassword = mutation({
  args: {
    currentPassword: v.string(),
    newPassword: v.string(),
  },
  handler: async (ctx, args) => {
    // Many Better Auth server methods require a currently authenticated
    // user, so request headers have to be passed in so session cookies
    // can be parsed and validated. The `getAuth` method provides both the
    // auth object and headers for convenience.
    const { auth, headers } = await authComponent.getAuth(createAuth, ctx);
    await auth.api.changePassword({
      body: {
        currentPassword: args.currentPassword,
        newPassword: args.newPassword,
      },
      headers,
    });
  },
});

Using Convex ctx in Better Auth config

The ctx param passed in to the createAuth function is the Convex context object. This can be used to access the Convex database or Convex functions in your Better Auth config. It can be a query, mutation, or action context.

Type guard utilities

Because ctx can be any of the three context types, the library exports type guards to narrow it when a specific context type is required.
UtilityImportDescription
requireActionCtx(ctx)@convex-dev/better-auth/utilsNarrows to GenericActionCtx. Throws if ctx is not an action context.
requireRunMutationCtx(ctx)@convex-dev/better-auth/utilsNarrows to a ctx with runMutation. Throws if neither mutation nor action.
requireMutationCtx(ctx)@convex-dev/better-auth/utilsNarrows to GenericMutationCtx. Throws if not a mutation context.
requireQueryCtx(ctx)@convex-dev/better-auth/utilsNarrows to GenericQueryCtx. Throws if not a query context.

Example: sending emails with Resend

A common use case is sending emails for verification or password resets with the Resend component. Calling resend.sendEmail directly would produce a type error because the ctx object could be a query ctx — network requests require an action ctx. Use requireActionCtx to narrow the type:
convex/auth.ts
import { requireActionCtx } from "@convex-dev/better-auth/utils";
import { type GenericCtx } from "@convex-dev/better-auth";
import { Resend } from "@convex-dev/resend";
import { components } from "./_generated/api";
import { type DataModel } from "./_generated/dataModel";

export const resend = new Resend(components.resend);

export const createAuthOptions = (ctx: GenericCtx<DataModel>) => ({
  baseURL: siteUrl,
  sendVerificationEmail: async ({ user, url }) => {
    // This function only requires a `runMutation` property on the ctx object,
    // but we'll make sure we have an action ctx because we know a network
    // request is being made, which requires an action ctx.
    await resend.sendEmail(requireActionCtx(ctx), {
      to: user.email,
      subject: "Verify your email",
      html: `<p>Click <a href="${url}">here</a> to verify your email</p>`,
    });
  },
});

Build docs developers (and LLMs) love

Get started for freeTalk to us