This example project uses Sanity.io hosted on Vercel, with custom login through Auth0.
To get Auth0 SSO login working on Vercel Serverless, the project leverages the nextjs-auth0 module despite the fact that this is not a Next.js project. (The peer dependency is not truly needed, so it works without adding Next.) This module handles login server-side using cookies and is a way to use Vercel serverless instead of a separate Express server.
☠️ This repo is published for discussion purposes. It is not intended as a fully-working example and code here may not work correctly, so use at your own risk. ☠️
Requirements
- a linked Sanity project
- a linked Vercel hosting project, plus signing in and deploying to vercel
- an Auth0 tenant set up for email/pw SSO login, and a user added to it
- correct CORS settings in Sanity, Vercel and Auth0
- a .env file like .env.example here, to run locally - later variables would be set in Vercel
- project is run locally using
yarn start:vercelwhich uses port 8000
Work was based on several public examples:
These both rely on Express, which makes this Vercel-based example unique, at time of writing.
- A custom
config/@sanity/default-login.jsondirects user click to: /api/login-> Auth0/api/on_logged_in(requires Auth0 CORS domain settings) callsauth0.handleCallbackand uses itsonUserLoadedoption to perform Sanity login
The main work is done in onUserLoaded. This file uses custom roles set up in Auth0 as user metadata to add/remove the user to custom Sanity groups, then authorizes the Sanity session.
A basic migration to update group permissions is also included in the migrations folder.