Merge branch 'main' into update-pull-request

Author: zoey-kaiser

docs/guide/application-side/session-access.md

@@ -182,7 +182,7 @@ await signUp(credentials, undefined, { preventLoginFlow: true })
 ```
 
 :::info
-You can also pass the `callbackUrl` option to redirect a user to a certain page, after he's completed the action. This can be useful when a user attempts to open a page (`/protected`) but has to go through external authentication (e.g., via their google account) first.
+You can also pass the `callbackUrl` option to redirect a user to a certain page, after they completed the action. This can be useful when a user attempts to open a page (`/protected`) but has to go through external authentication (e.g., via their google account) first.
 :::
 
 :::warning Local / Refresh Only
@@ -229,7 +229,7 @@ await signIn(credentials, { callbackUrl: 'https://nuxt.org', external: true })
 :::
 
 :::info
-You can also pass the `callbackUrl` option to redirect a user to a certain page, after he's completed the action. This can be useful when a user attempts to open a page (`/protected`) but has to go through external authentication (e.g., via their google account) first.
+You can also pass the `callbackUrl` option to redirect a user to a certain page, after they completed the action. This can be useful when a user attempts to open a page (`/protected`) but has to go through external authentication (e.g., via their google account) first.
 :::
 
 ### `signOut`
@@ -255,7 +255,7 @@ const { signOut } = useAuth()
 ```
 
 :::info
-You can also pass the `callbackUrl` option to redirect a user to a certain page, after he's completed the action. This can be useful when a user attempts to open a page (`/protected`) but has to go through external authentication (e.g., via their google account) first.
+You can also pass the `callbackUrl` option to redirect a user to a certain page, after they completed the action. This can be useful when a user attempts to open a page (`/protected`) but has to go through external authentication (e.g., via their google account) first.
 :::
 
 ### `refreshToken`

docs/guide/getting-started/choose-provider.md

@@ -30,7 +30,7 @@ If you are still unsure, below are some tables to help you pick:
 | Static apps ("nuxi generate")                                  	| ❌                                  | ✅      | ✅
 | [Guest mode](/guide/application-side/protecting-pages#guest-mode) | ✅                                  | ✅      | ✅
 | [App-side middleware](/guide/application-side/protecting-pages)   | ✅                                  | ✅      | ✅
-| [Server-side middleware](/guide/authjs/server-side/session-access#endpoint-protection)                                      | ✅                                  | ✅      | ✅
+| [Server-side middleware](/guide/authjs/server-side/session-access#endpoint-protection)                                      | ✅                                  | ❌      | ❌
 | Pre-made login-page                                       	    | ✅ (impacts bundle-size)            | ❌      | ❌
 | Database-adapters, server-side callback-hooks             	    | ✅                                  | ❌      | ❌
 

docs/guide/local/quick-start.md

@@ -93,11 +93,14 @@ To ensure that the module can properly identify that your endpoints point to an
 auth: {
     baseURL: 'https://external-api.com', // [!code --]
     baseURL: 'https://external-api.com/' // [!code ++]
-    endpoints: {
-        signIn: { path: '/login', method: 'post' }, // [!code --]
-        signIn: { path: 'login', method: 'post' }, // [!code ++]
-        getSession: { path: '/session', method: 'get' }, // [!code --]
-        getSession: { path: 'session', method: 'get' }, // [!code ++]
+    provider: {
+        type: 'local',
+        endpoints: {
+            signIn: { path: '/login', method: 'post' }, // [!code --]
+            signIn: { path: 'login', method: 'post' }, // [!code ++]
+            getSession: { path: '/session', method: 'get' }, // [!code --]
+            getSession: { path: 'session', method: 'get' }, // [!code ++]
+        }
     }
 }
 ```

package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sidebase/nuxt-auth",
-  "version": "0.8.0",
+  "version": "0.8.1",
   "license": "MIT",
   "type": "module",
   "exports": {

src/runtime/middleware/auth.ts

@@ -66,8 +66,8 @@ export default defineNuxtRouteMiddleware((to) => {
     return
   }
 
-  // We do not want to block the login page when the local provider is used
-  if (authConfig.provider?.type === 'local') {
+  // We do not want to block the login page when the local/refresh provider is used
+  if (authConfig.provider?.type === 'local' || authConfig.provider?.type === 'refresh') {
     const loginRoute: string | undefined = authConfig.provider?.pages?.login
     if (loginRoute && loginRoute === to.path) {
       return

src/runtime/plugin.ts

@@ -13,7 +13,7 @@ export default defineNuxtPlugin(async (nuxtApp) => {
   // use runtimeConfig
   const runtimeConfig = useRuntimeConfig().public.auth
 
-  const routeRules = getNitroRouteRules(nuxtApp._route.path)
+  const routeRules = import.meta.server ? getNitroRouteRules(nuxtApp._route.path) : {}
 
   // Skip auth if we're prerendering
   let nitroPrerender = false