Manually navigating to /api/auth/callback/resend is not revalidating the page after successful verification

[peguerosdc]

Hi!

I am trying to implement authentication with OTP by adapting Resend's provider to send a token instead of an authentication link and asking the user to input that token in a form.

Once the token is input, I redirect the user to the verification page using a link exactly the same to the one that would have been sent by email by doing:

import { useRouter } from "next/navigation";

const router = useRouter();
router.push(`/api/auth/callback/resend?email=${email}&token={token}&callbackUrl=${callbackUrl}`);

Once the user is directed to that page and passes the verification, he is automatically directed to the callbackUrl, but the problem is that user doesn't appear to be signed in. He has to manually refresh the website so the session is detected.

Any ideas what is happening here? I am not sure if it's related to how Nextjs handles cache and navigation, or if it's related to Auth.js.

For reference, I am taking inspiration from this post on someone who did something similar, where the author proposed instead doing:

const otpRequestURL = `/api/auth/callback/email?email=${formattedEmail}&token=${formattedCode}&callbackUrl=${formattedCallback}`
const response = await fetch(otpRequestURL)

if (response) {
  if (response.url.includes('/private')) {
    router.push(response.url)
  } else {
    router.replace(`/auth/signin?error=Verification`)
  }
}

But I see the same behavior.