Convex + Better Auth
API

Component Client

Component client for Better Auth

The component client is returned from the createClient function, and provides helpful methods for using Better Auth in your Convex code.

adapter()

Returns the Convex database adapter for use in Better Auth options.

import { createClient } from "@convex-dev/better-auth";
import { components } from "./_generated/api";
import { type GenericCtx } from "./_generated/server";
import { DataModel } from "./_generated/dataModel";

export const authComponent = createClient<DataModel>(components.betterAuth);

export const createAuth = (ctx: GenericCtx<DataModel>) => {
  return betterAuth({
    database: authComponent.adapter(ctx),
  });
});

getAuth()

Better Auth API endpoints can be called directly from the server, and many require headers to be passed in containing a session token for the current user. This method provides both the auth object and headers for convenience.

import { mutation } from "./_generated/server";
import { v } from "convex/values";
import { createAuth, authComponent } from "./auth";

export const changePassword = mutation({
  args: {
    newPassword: v.string(),
    currentPassword: v.string(),
  },
  handler: async (ctx, args) => {
    const { auth, headers } = await authComponent.getAuth(createAuth, ctx);
    await auth.api.changePassword({
      body: {
        newPassword: args.newPassword,
        currentPassword: args.currentPassword,
      },
      headers,
    });
  },
});

getAnyUserById()

Returns a user by their Better Auth user id.

import { query } from "./_generated/server";
import { v } from "convex/values";
import { authComponent } from "./auth";

export const getUser = query({
  args: { id: v.id("user") },
  handler: async (ctx, args) => {
    return authComponent.getAnyUserById(ctx, args.id);
  },
});

registerRoutesLazy()

Registers Better Auth HTTP handlers without initializing Better Auth during route registration. This reduces memory usage in convex/http.ts, which can prevent out-of-memory errors during deploy.

import { httpRouter } from "convex/server";
import { authComponent, createAuth } from "./auth";

const http = httpRouter();

authComponent.registerRoutesLazy(http, createAuth, {
  basePath: "/api/auth",
  cors: true,
  trustedOrigins: [process.env.SITE_URL!],
});

export default http;

If your Better Auth config uses the default /api/auth path, you can omit basePath.

If you use CORS, pass trustedOrigins so the OPTIONS handler can respond without loading Better Auth.

Experimental

Experimental features for Convex + Better Auth

Convex Plugin

Configuration options for the Convex Better Auth plugin

On this page

adapter()
getAuth()
getAnyUserById()
registerRoutesLazy()