npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

better-auth-solana

v1.0.0

Published

Better Auth plugin for Solana sign-in.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

beemanbeeman

Keywords

authenticationbetter-authsiwssolanawallet

Readme

better-auth-solana

better-auth-solana is a Better Auth plugin for Sign in With Solana.

It uses the Better Auth plugin namespace siws and requires better-auth ^1.5.0.

It exposes three public entrypoints:

  • better-auth-solana for the server plugin
  • better-auth-solana/client for client helpers
  • better-auth-solana/schema for the default Solana wallet schema

AI Agent Skill

If you use AI coding agents such as Codex, Claude Code, or OpenCode in a skills-enabled setup, install the companion skill with:

npx skills add beeman/better-auth-solana

You can also inspect the packaged skill directly in node_modules at skills/better-auth-solana/SKILL.md.

For deeper integration guidance, see:

Install

bun add @solana/kit better-auth better-auth-solana@latest

Server

import { betterAuth } from 'better-auth'
import { siws } from 'better-auth-solana'

export const auth = betterAuth({
  database: myDatabase,
  plugins: [
    siws({
      domain: 'example.com',
    }),
  ],
})

The plugin adds these Better Auth endpoints:

  • POST /siws/link
  • POST /siws/nonce
  • POST /siws/verify

These are plugin subpaths under your Better Auth handler. If Better Auth is mounted under /api/auth/*, for example, POST /siws/verify becomes POST /api/auth/siws/verify.

POST /siws/link accepts { walletAddress, message, signature }, requires an authenticated Better Auth session, verifies the signed SIWS payload, persists a solanaWallet row when needed, persists an account row with providerId: "siws" when needed, and keeps the current session intact.

POST /siws/nonce accepts { walletAddress } and stores a challenge in Better Auth verification storage under siws:<walletAddress>.

POST /siws/verify accepts { walletAddress, message, signature, email? }, verifies the signed SIWS payload, creates or reuses the Better Auth user, persists a solanaWallet row, persists an account row with providerId: "siws", and establishes the Better Auth session with native session cookies.

For backend wiring, cookies, and origin handling, see Backend.

Client

better-auth-solana/client exports createSIWSInput(...), createSIWSMessage(...), formatSIWSMessage(...), and siwsClient() for Better Auth client inference.

  • Use createSIWSInput(...) when the wallet library accepts structured SIWS input.
  • Use createSIWSMessage(...) when the wallet library expects the raw SIWS message string.
  • Use formatSIWSMessage(...) when you already have the SIWS fields and only need the canonical message string.

Use authClient.siws.verify(...) for SIWS sign-in when the wallet flow should create or resume the Better Auth session. Use authClient.siws.link(...) only when the user already has a Better Auth session and wants to attach another wallet.

import { createAuthClient } from 'better-auth/client'
import { createSIWSInput, siwsClient } from 'better-auth-solana/client'

const authClient = createAuthClient({
  plugins: [siwsClient()],
})

const nonceResult = await authClient.siws.nonce({
  walletAddress: address,
})

if (!nonceResult.data) {
  throw new Error('Failed to request SIWS nonce')
}

const siwsInput = createSIWSInput({
  address,
  challenge: nonceResult.data,
  statement: 'Sign in to Example',
})

const signed = await signWithYourWallet(siwsInput)

await authClient.siws.verify({
  message: signed.message,
  signature: signed.signature,
  walletAddress: address,
})

const session = await authClient.getSession()

For raw signMessage flows, build the SIWS string directly:

import { createSIWSMessage } from 'better-auth-solana/client'

const message = createSIWSMessage({
  address,
  challenge: nonceResult.data,
  statement: 'Sign in to Example',
})

const signed = await signMessage(new TextEncoder().encode(message))

The server validates the signed message against the issued domain, uri, nonce, issuedAt, and expirationTime. The statement remains client-controlled.

For platform-specific client guidance, see React Native and Expo and React web.

Default Schema

import { solanaWalletSchema } from 'better-auth-solana/schema'

The default solanaWallet model defines these custom fields:

  • address
  • createdAt
  • isPrimary
  • userId

Better Auth adapters commonly add a generated primary key such as id, so the list above describes the plugin-defined fields rather than the full persisted table shape. The default schema marks address as unique. The plugin stores one wallet row per address and one SIWS account row per wallet address.

The first Solana wallet row created for a user is marked isPrimary: true. Additional Solana wallet rows for that user are marked isPrimary: false.

SIWS also depends on Better Auth's standard account, session, user, and verification tables. The package writes solanaWallet directly and uses Better Auth internals for the other models.

For schema composition and table expectations, see Schema and tables.

Options

siws() accepts:

  • anonymous default true
  • domain required
  • emailDomainName optional
  • getNonce optional async override for SIWS nonce generation
  • nonceExpirationMs default 900000
  • profileLookup optional async lookup for user name and image when SIWS creates a brand-new user
  • schema optional Better Auth schema field overrides for solanaWallet
  • uri optional override for the SIWS challenge uri
  • verifySignature optional async override for SIWS signature verification

When anonymous is false, email is required on /siws/verify.

When emailDomainName is omitted, generated fallback emails use the Better Auth base URL host.

When profileLookup is provided, it is only used when SIWS creates a brand-new Better Auth user. Existing users are not updated on later sign-ins or links.

When uri is a non-empty string, issued challenges use it verbatim. Otherwise SIWS uses Better Auth's resolved base URL and falls back to https://${domain} when no base URL is available.

Notes

  • The account id format is <walletAddress>.
  • The account provider id is siws.
  • The client surface is authClient.siws.link(...), authClient.siws.nonce(...), and authClient.siws.verify(...).
  • If your app already uses Better Auth's last-login-method plugin, add a customResolveMethod that maps /siws/verify to siws.
  • The package name is better-auth-solana; the plugin namespace is siws.

The Better Auth docs currently describe default last-login-method detection for email and OAuth flows. Because SIWS is a custom flow, map it explicitly when you use that plugin. See Better Auth's Last Login Method and SIWE docs for the surrounding Better Auth behavior.

Example last-login-method resolver:

import { lastLoginMethod } from 'better-auth/plugins'

lastLoginMethod({
  customResolveMethod(ctx) {
    if (ctx.path === '/siws/verify') {
      return 'siws'
    }

    return null
  },
})

Development

bun install
bun run build
bun run check-types
bun run lint
bun run lint:fix
bun run test
bun run test:watch