[{"data":1,"prerenderedAt":911},["ShallowReactive",2],{"navigation_docs":3,"-guides-external-auth-backend":152,"-guides-external-auth-backend-surround":906},[4,42,68,110,131],{"title":5,"path":6,"stem":7,"children":8,"icon":11},"Getting Started","/getting-started","1.getting-started/0.index",[9,12,17,22,27,32,37],{"title":10,"path":6,"stem":7,"icon":11},"Introduction","i-lucide-sparkles",{"title":13,"path":14,"stem":15,"icon":16},"Installation","/getting-started/installation","1.getting-started/1.installation","i-lucide-download",{"title":18,"path":19,"stem":20,"icon":21},"Configuration","/getting-started/configuration","1.getting-started/2.configuration","i-lucide-settings",{"title":23,"path":24,"stem":25,"icon":26},"Client Setup","/getting-started/client-setup","1.getting-started/3.client-setup","i-lucide-monitor",{"title":28,"path":29,"stem":30,"icon":31},"Type Augmentation","/getting-started/type-augmentation","1.getting-started/4.type-augmentation","i-lucide-type",{"title":33,"path":34,"stem":35,"icon":36},"Schema Generation (NuxtHub)","/getting-started/schema-generation","1.getting-started/5.schema-generation","i-lucide-database",{"title":38,"path":39,"stem":40,"icon":41},"How It Works","/getting-started/how-it-works","1.getting-started/6.how-it-works","i-lucide-workflow",{"title":43,"path":44,"stem":45,"children":46,"page":67},"Core Concepts","/core-concepts","2.core-concepts",[47,51,55,59,63],{"title":48,"path":49,"stem":50},"serverAuth()","/core-concepts/server-auth","2.core-concepts/1.server-auth",{"title":52,"path":53,"stem":54},"Sessions","/core-concepts/sessions","2.core-concepts/2.sessions",{"title":56,"path":57,"stem":58},"Route Protection","/core-concepts/route-protection","2.core-concepts/3.route-protection",{"title":60,"path":61,"stem":62},"Auto‑Imports and Aliases","/core-concepts/auto-imports-aliases","2.core-concepts/4.auto-imports-aliases",{"title":64,"path":65,"stem":66},"Security & Caveats","/core-concepts/security-caveats","2.core-concepts/5.security-caveats",false,{"title":69,"path":70,"stem":71,"children":72,"page":67},"Guides","/guides","3.guides",[73,77,81,85,89,94,98,102,106],{"title":74,"path":75,"stem":76},"Role‑Based Access","/guides/role-based-access","3.guides/1.role-based-access",{"title":78,"path":79,"stem":80},"OAuth Providers","/guides/oauth-providers","3.guides/2.oauth-providers",{"title":82,"path":83,"stem":84},"Custom Database","/guides/custom-database","3.guides/3.custom-database",{"title":86,"path":87,"stem":88},"Database-less Mode","/guides/database-less-mode","3.guides/4.database-less-mode",{"title":90,"path":91,"stem":92,"icon":93},"External Auth Backend","/guides/external-auth-backend","3.guides/5.external-auth-backend","i-lucide-server",{"title":95,"path":96,"stem":97},"Migrating from nuxt-auth-utils","/guides/migrate-from-nuxt-auth-utils","3.guides/6.migrate-from-nuxt-auth-utils",{"title":99,"path":100,"stem":101},"Two-Factor Authentication (TOTP + Backup Codes)","/guides/two-factor-auth","3.guides/7.two-factor-auth",{"title":103,"path":104,"stem":105},"Testing","/guides/testing","3.guides/8.testing",{"title":107,"path":108,"stem":109},"Production Deployment","/guides/production-deployment","3.guides/9.production-deployment",{"title":111,"path":112,"stem":113,"children":114,"page":67},"Integrations","/integrations","4.integrations",[115,119,123,127],{"title":116,"path":117,"stem":118},"NuxtHub","/integrations/nuxthub","4.integrations/1.nuxthub",{"title":120,"path":121,"stem":122},"DevTools","/integrations/devtools","4.integrations/2.devtools",{"title":124,"path":125,"stem":126},"Convex","/integrations/convex","4.integrations/3.convex",{"title":128,"path":129,"stem":130},"i18n","/integrations/i18n","4.integrations/4.i18n",{"title":132,"path":133,"stem":134,"children":135,"page":67},"API Reference","/api","5.api",[136,140,144,148],{"title":137,"path":138,"stem":139},"Composables","/api/composables","5.api/1.composables",{"title":141,"path":142,"stem":143},"Server Utilities","/api/server-utils","5.api/2.server-utils",{"title":145,"path":146,"stem":147},"Components","/api/components","5.api/3.components",{"title":149,"path":150,"stem":151},"Types","/api/types","5.api/4.types",{"id":153,"title":90,"body":154,"description":899,"extension":900,"links":901,"meta":902,"navigation":903,"path":91,"seo":904,"stem":92,"__hash__":905},"docs/3.guides/5.external-auth-backend.md",{"type":155,"value":156,"toc":886},"minimark",[157,166,171,194,197,202,292,296,310,322,325,329,332,436,440,573,577,606,622,639,643,650,664,849,852,856,864,868,882],[158,159,160,161,165],"p",{},"When your Better Auth server runs on a separate backend (e.g., standalone h3/Nitro project, Express, or any other server), use ",[162,163,164],"code",{},"clientOnly"," mode.",[167,168,170],"h2",{"id":169},"when-to-use","When to Use",[172,173,174,182,188],"ul",{},[175,176,177,181],"li",{},[178,179,180],"strong",{},"Microservices architecture",": Auth service is a separate deployment",[175,183,184,187],{},[178,185,186],{},"Shared auth",": Multiple frontends share one auth backend",[175,189,190,193],{},[178,191,192],{},"Existing backend",": You already have a Better Auth server running elsewhere",[167,195,18],{"id":196},"configuration",[198,199,201],"h3",{"id":200},"_1-enable-client-only-mode","1. Enable Client-Only Mode",[203,204,210],"pre",{"className":205,"code":206,"filename":207,"language":208,"meta":209,"style":209},"language-ts shiki shiki-themes one-light synthwave-84 synthwave-84","export default defineNuxtConfig({\n  modules: ['@onmax/nuxt-better-auth'],\n  auth: {\n    clientOnly: true,\n  },\n})\n","nuxt.config.ts","ts","",[162,211,212,233,254,265,280,286],{"__ignoreMap":209},[213,214,217,221,225,229],"span",{"class":215,"line":216},"line",1,[213,218,220],{"class":219},"sqe1H","export",[213,222,224],{"class":223},"sKg8T"," default",[213,226,228],{"class":227},"sfT9l"," defineNuxtConfig",[213,230,232],{"class":231},"s17Py","({\n",[213,234,236,240,244,247,251],{"class":215,"line":235},2,[213,237,239],{"class":238},"sYvLG","  modules",[213,241,243],{"class":242},"sVnqq",":",[213,245,246],{"class":231}," [",[213,248,250],{"class":249},"sPAZv","'@onmax/nuxt-better-auth'",[213,252,253],{"class":231},"],\n",[213,255,257,260,262],{"class":215,"line":256},3,[213,258,259],{"class":238},"  auth",[213,261,243],{"class":242},[213,263,264],{"class":231}," {\n",[213,266,268,271,273,277],{"class":215,"line":267},4,[213,269,270],{"class":238},"    clientOnly",[213,272,243],{"class":242},[213,274,276],{"class":275},"s3ZNE"," true",[213,278,279],{"class":231},",\n",[213,281,283],{"class":215,"line":282},5,[213,284,285],{"class":231},"  },\n",[213,287,289],{"class":215,"line":288},6,[213,290,291],{"class":231},"})\n",[198,293,295],{"id":294},"_2-point-the-client-to-the-external-server","2. Point the Client to the External Server",[158,297,298,301,302,305,306,309],{},[162,299,300],{},"defineClientAuth"," is wrapped by the module at runtime, so ",[162,303,304],{},"baseURL"," here is ",[178,307,308],{},"overridden",".\nTo target an external auth server, set the site URL:",[203,311,316],{"className":312,"code":313,"filename":314,"language":315,"meta":209,"style":209},"language-ini shiki shiki-themes one-light synthwave-84 synthwave-84","NUXT_PUBLIC_SITE_URL=\"https://auth.example.com\"\n",".env","ini",[162,317,318],{"__ignoreMap":209},[213,319,320],{"class":215,"line":216},[213,321,313],{},[158,323,324],{},"This value becomes the Better Auth client base URL in client-only mode.",[198,326,328],{"id":327},"_3-configure-route-redirect-targets-optional","3. Configure Route Redirect Targets (Optional)",[158,330,331],{},"Control redirect paths directly in route auth rules:",[203,333,335],{"className":205,"code":334,"filename":207,"language":208,"meta":209,"style":209},"export default defineNuxtConfig({\n  routeRules: {\n    '/app/**': { auth: { only: 'user', redirectTo: '/login' } },\n    '/login': { auth: { only: 'guest', redirectTo: '/app' } },\n  },\n})\n",[162,336,337,347,356,395,428,432],{"__ignoreMap":209},[213,338,339,341,343,345],{"class":215,"line":216},[213,340,220],{"class":219},[213,342,224],{"class":223},[213,344,228],{"class":227},[213,346,232],{"class":231},[213,348,349,352,354],{"class":215,"line":235},[213,350,351],{"class":238},"  routeRules",[213,353,243],{"class":242},[213,355,264],{"class":231},[213,357,358,361,363,366,369,371,373,376,378,381,384,387,389,392],{"class":215,"line":256},[213,359,360],{"class":249},"    '/app/**'",[213,362,243],{"class":242},[213,364,365],{"class":231}," { ",[213,367,368],{"class":238},"auth",[213,370,243],{"class":242},[213,372,365],{"class":231},[213,374,375],{"class":238},"only",[213,377,243],{"class":242},[213,379,380],{"class":249}," 'user'",[213,382,383],{"class":231},", ",[213,385,386],{"class":238},"redirectTo",[213,388,243],{"class":242},[213,390,391],{"class":249}," '/login'",[213,393,394],{"class":231}," } },\n",[213,396,397,400,402,404,406,408,410,412,414,417,419,421,423,426],{"class":215,"line":267},[213,398,399],{"class":249},"    '/login'",[213,401,243],{"class":242},[213,403,365],{"class":231},[213,405,368],{"class":238},[213,407,243],{"class":242},[213,409,365],{"class":231},[213,411,375],{"class":238},[213,413,243],{"class":242},[213,415,416],{"class":249}," 'guest'",[213,418,383],{"class":231},[213,420,386],{"class":238},[213,422,243],{"class":242},[213,424,425],{"class":249}," '/app'",[213,427,394],{"class":231},[213,429,430],{"class":215,"line":282},[213,431,285],{"class":231},[213,433,434],{"class":215,"line":288},[213,435,291],{"class":231},[167,437,439],{"id":438},"what-changes-in-client-only-mode","What Changes in Client-Only Mode",[441,442,443,459],"table",{},[444,445,446],"thead",{},[447,448,449,453,456],"tr",{},[450,451,452],"th",{},"Feature",[450,454,455],{},"Full Mode",[450,457,458],{},"Client-Only",[460,461,462,476,490,501,511,520,529,540,552,562],"tbody",{},[447,463,464,470,473],{},[465,466,467],"td",{},[162,468,469],{},"server/auth.config.ts",[465,471,472],{},"Required",[465,474,475],{},"Not needed",[447,477,478,484,487],{},[465,479,480,483],{},[162,481,482],{},"/api/auth/**"," handlers",[465,485,486],{},"Auto-registered",[465,488,489],{},"Skipped",[447,491,492,497,499],{},[465,493,494],{},[162,495,496],{},"NUXT_BETTER_AUTH_SECRET",[465,498,472],{},[465,500,475],{},[447,502,503,506,509],{},[465,504,505],{},"Server middleware",[465,507,508],{},"Enabled",[465,510,489],{},[447,512,513,516,518],{},[465,514,515],{},"Schema generation",[465,517,508],{},[465,519,489],{},[447,521,522,525,527],{},[465,523,524],{},"Devtools",[465,526,508],{},[465,528,489],{},[447,530,531,534,537],{},[465,532,533],{},"SSR session hydration",[465,535,536],{},"Server-side",[465,538,539],{},"Client-side only",[447,541,542,547,550],{},[465,543,544],{},[162,545,546],{},"useUserSession()",[465,548,549],{},"Works",[465,551,549],{},[447,553,554,557,559],{},[465,555,556],{},"Route protection",[465,558,549],{},[465,560,561],{},"Works (client-side)",[447,563,564,569,571],{},[465,565,566],{},[162,567,568],{},"\u003CBetterAuthState>",[465,570,549],{},[465,572,549],{},[167,574,576],{"id":575},"important-notes","Important Notes",[578,579,580,583],"warning",{},[158,581,582],{},"In client-only mode, all auth requests go directly to your external server. Ensure:",[172,584,585,592,599],{},[175,586,587,588,591],{},"CORS is configured on your auth server to allow requests from your frontend (with ",[162,589,590],{},"credentials: true",")",[175,593,594,595,598],{},"Cookies use ",[162,596,597],{},"SameSite=None; Secure"," for cross-origin requests (HTTPS required)",[175,600,601,602,605],{},"Your auth server's ",[162,603,604],{},"trustedOrigins"," includes your frontend URL",[607,608,609,610,613,614,617,618,621],"note",{},"In client-only mode, ",[162,611,612],{},"NUXT_PUBLIC_SITE_URL"," is used as the auth client base URL.\nUse ",[162,615,616],{},"routeRules.auth.redirectTo"," (or page meta ",[162,619,620],{},"auth.redirectTo",") to control frontend navigation paths.",[607,623,624,625,383,627,630,631,634,635,638],{},"Server utilities like ",[162,626,48],{},[162,628,629],{},"getUserSession()"," and ",[162,632,633],{},"requireUserSession()"," are ",[178,636,637],{},"not available"," in client-only mode since there's no local auth server.",[167,640,642],{"id":641},"ssr-considerations","SSR Considerations",[158,644,645,646,649],{},"In client-only mode, session data is fetched ",[178,647,648],{},"client-side only",". This means:",[172,651,652,655,658],{},[175,653,654],{},"Server-rendered pages won't have access to session data during SSR",[175,656,657],{},"Pages will initially render as \"unauthenticated\" and hydrate with session data on the client",[175,659,660,661,663],{},"Use ",[162,662,568],{}," component to handle loading states gracefully",[203,665,669],{"className":666,"code":667,"language":668,"meta":209,"style":209},"language-vue shiki shiki-themes one-light synthwave-84 synthwave-84","\u003Ctemplate>\n  \u003CBetterAuthState>\n    \u003Ctemplate #default=\"{ user }\">\n      \u003Cdiv v-if=\"user\">Welcome, {{ user.name }}\u003C/div>\n      \u003Cdiv v-else>Please log in\u003C/div>\n    \u003C/template>\n    \u003Ctemplate #placeholder>\n      \u003Cdiv>Loading...\u003C/div>\n    \u003C/template>\n  \u003C/BetterAuthState>\n\u003C/template>\n","vue",[162,670,671,684,694,731,760,780,789,803,821,830,840],{"__ignoreMap":209},[213,672,673,677,681],{"class":215,"line":216},[213,674,676],{"class":675},"sL9le","\u003C",[213,678,680],{"class":679},"stweg","template",[213,682,683],{"class":675},">\n",[213,685,686,689,692],{"class":215,"line":235},[213,687,688],{"class":675},"  \u003C",[213,690,691],{"class":679},"BetterAuthState",[213,693,683],{"class":675},[213,695,696,699,701,705,709,713,717,720,724,727,729],{"class":215,"line":256},[213,697,698],{"class":675},"    \u003C",[213,700,680],{"class":679},[213,702,704],{"class":703},"sEEOt"," #",[213,706,708],{"class":707},"s0frj","default",[213,710,712],{"class":711},"sNM9w","=",[213,714,716],{"class":715},"ss3L-","\"",[213,718,719],{"class":703},"{ ",[213,721,723],{"class":722},"svFNh","user",[213,725,726],{"class":703}," }",[213,728,716],{"class":715},[213,730,683],{"class":675},[213,732,733,736,739,742,744,747,750,753,756,758],{"class":215,"line":267},[213,734,735],{"class":675},"      \u003C",[213,737,738],{"class":679},"div",[213,740,741],{"class":707}," v-if",[213,743,712],{"class":711},[213,745,746],{"class":249},"\"user\"",[213,748,749],{"class":675},">",[213,751,752],{"class":703},"Welcome, {{ user.name }}",[213,754,755],{"class":675},"\u003C/",[213,757,738],{"class":679},[213,759,683],{"class":675},[213,761,762,764,766,769,771,774,776,778],{"class":215,"line":282},[213,763,735],{"class":675},[213,765,738],{"class":679},[213,767,768],{"class":707}," v-else",[213,770,749],{"class":675},[213,772,773],{"class":703},"Please log in",[213,775,755],{"class":675},[213,777,738],{"class":679},[213,779,683],{"class":675},[213,781,782,785,787],{"class":215,"line":288},[213,783,784],{"class":675},"    \u003C/",[213,786,680],{"class":679},[213,788,683],{"class":675},[213,790,792,794,796,798,801],{"class":215,"line":791},7,[213,793,698],{"class":675},[213,795,680],{"class":679},[213,797,704],{"class":703},[213,799,800],{"class":707},"placeholder",[213,802,683],{"class":675},[213,804,806,808,810,812,815,817,819],{"class":215,"line":805},8,[213,807,735],{"class":675},[213,809,738],{"class":679},[213,811,749],{"class":675},[213,813,814],{"class":703},"Loading...",[213,816,755],{"class":675},[213,818,738],{"class":679},[213,820,683],{"class":675},[213,822,824,826,828],{"class":215,"line":823},9,[213,825,784],{"class":675},[213,827,680],{"class":679},[213,829,683],{"class":675},[213,831,833,836,838],{"class":215,"line":832},10,[213,834,835],{"class":675},"  \u003C/",[213,837,691],{"class":679},[213,839,683],{"class":675},[213,841,843,845,847],{"class":215,"line":842},11,[213,844,755],{"class":675},[213,846,680],{"class":679},[213,848,683],{"class":675},[158,850,851],{},"If you need SSR session hydration, consider using full mode with a local auth server instead.",[167,853,855],{"id":854},"example-architecture","Example Architecture",[203,857,862],{"className":858,"code":860,"language":861},[859],"language-text","┌─────────────────┐     ┌─────────────────┐\n│   Nuxt App      │────▶│  Auth Server    │\n│  (clientOnly)   │     │ (Better Auth)   │\n│                 │◀────│                 │\n└─────────────────┘     └────────┬────────┘\n                                 │\n                        ┌────────▼────────┐\n                        │    Database     │\n                        └─────────────────┘\n","text",[162,863,860],{"__ignoreMap":209},[167,865,867],{"id":866},"related","Related",[172,869,870,876],{},[175,871,872,875],{},[873,874,18],"a",{"href":19}," - Module options reference",[175,877,878,881],{},[873,879,880],{"href":87},"Database-Less Mode"," - JWE sessions without database",[883,884,885],"style",{},"html pre.shiki code .sqe1H, html code.shiki .sqe1H{--shiki-light:#A626A4;--shiki-default:#FEDE5D;--shiki-dark:#FEDE5D}html pre.shiki code .sKg8T, html code.shiki .sKg8T{--shiki-light:#E45649;--shiki-default:#FEDE5D;--shiki-dark:#FEDE5D}html pre.shiki code .sfT9l, html code.shiki .sfT9l{--shiki-light:#4078F2;--shiki-default:#36F9F6;--shiki-dark:#36F9F6}html pre.shiki code .s17Py, html code.shiki .s17Py{--shiki-light:#383A42;--shiki-default:#BBBBBB;--shiki-dark:#BBBBBB}html pre.shiki code .sYvLG, html code.shiki .sYvLG{--shiki-light:#E45649;--shiki-default:#FF7EDB;--shiki-dark:#FF7EDB}html pre.shiki code .sVnqq, html code.shiki .sVnqq{--shiki-light:#0184BC;--shiki-default:#B6B1B1;--shiki-dark:#B6B1B1}html pre.shiki code .sPAZv, html code.shiki .sPAZv{--shiki-light:#50A14F;--shiki-default:#FF8B39;--shiki-dark:#FF8B39}html pre.shiki code .s3ZNE, html code.shiki .s3ZNE{--shiki-light:#986801;--shiki-default:#F97E72;--shiki-dark:#F97E72}html .light .shiki span {color: var(--shiki-light);background: var(--shiki-light-bg);font-style: var(--shiki-light-font-style);font-weight: var(--shiki-light-font-weight);text-decoration: var(--shiki-light-text-decoration);}html.light .shiki span {color: var(--shiki-light);background: var(--shiki-light-bg);font-style: var(--shiki-light-font-style);font-weight: var(--shiki-light-font-weight);text-decoration: var(--shiki-light-text-decoration);}html .default .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .dark .shiki span {color: var(--shiki-dark);background: var(--shiki-dark-bg);font-style: var(--shiki-dark-font-style);font-weight: var(--shiki-dark-font-weight);text-decoration: var(--shiki-dark-text-decoration);}html.dark .shiki span {color: var(--shiki-dark);background: var(--shiki-dark-bg);font-style: var(--shiki-dark-font-style);font-weight: var(--shiki-dark-font-weight);text-decoration: var(--shiki-dark-text-decoration);}html pre.shiki code .sL9le, html code.shiki .sL9le{--shiki-light:#383A42;--shiki-default:#36F9F6;--shiki-dark:#36F9F6}html pre.shiki code .stweg, html code.shiki .stweg{--shiki-light:#E45649;--shiki-default:#72F1B8;--shiki-dark:#72F1B8}html pre.shiki code .sEEOt, html code.shiki .sEEOt{--shiki-light:#383A42;--shiki-default:#FFFFFFEE;--shiki-dark:#FFFFFFEE}html pre.shiki code .s0frj, html code.shiki .s0frj{--shiki-light:#986801;--shiki-light-font-style:inherit;--shiki-default:#FEDE5D;--shiki-default-font-style:italic;--shiki-dark:#FEDE5D;--shiki-dark-font-style:italic}html pre.shiki code .sNM9w, html code.shiki .sNM9w{--shiki-light:#383A42;--shiki-default:#B6B1B1;--shiki-dark:#B6B1B1}html pre.shiki code .ss3L-, html code.shiki .ss3L-{--shiki-light:#383A42;--shiki-default:#FF8B39;--shiki-dark:#FF8B39}html pre.shiki code .svFNh, html code.shiki .svFNh{--shiki-light:#383A42;--shiki-default:#FF7EDB;--shiki-dark:#FF7EDB}",{"title":209,"searchDepth":235,"depth":235,"links":887},[888,889,894,895,896,897,898],{"id":169,"depth":235,"text":170},{"id":196,"depth":235,"text":18,"children":890},[891,892,893],{"id":200,"depth":256,"text":201},{"id":294,"depth":256,"text":295},{"id":327,"depth":256,"text":328},{"id":438,"depth":235,"text":439},{"id":575,"depth":235,"text":576},{"id":641,"depth":235,"text":642},{"id":854,"depth":235,"text":855},{"id":866,"depth":235,"text":867},"Use nuxt-better-auth with a separate Better Auth server.","md",null,{},{"icon":93},{"title":90,"description":899},"MrGQJIbQvNy8BSnr_u6tKS2qWntao9HO9YTWS_Gf8jg",[907,909],{"title":86,"path":87,"stem":88,"description":908,"children":-1},"Run Better Auth without a database for edge and serverless deployments.",{"title":95,"path":96,"stem":97,"description":910,"children":-1},"Step-by-step guide to migrate from nuxt-auth-utils to Nuxt Better Auth.",1774627854915]