fix(types): resolve pre-existing TypeScript errors across auth, secrets, and copilot

Author: waleedlatif1

apps/sim/app/api/auth/socket-token/route.ts

@@ -10,7 +10,10 @@ export async function POST() {
 
   try {
     const hdrs = await headers()
-    const response = await auth.api.generateOneTimeToken({
+    const api = auth.api as typeof auth.api & {
+      generateOneTimeToken: (ctx: { headers: Headers }) => Promise<{ token: string }>
+    }
+    const response = await api.generateOneTimeToken({
       headers: hdrs,
     })
 

apps/sim/app/api/auth/sso/register/route.ts

@@ -377,7 +377,13 @@ export async function POST(request: NextRequest) {
       ),
     })
 
-    const registration = await auth.api.registerSSOProvider({
+    const api = auth.api as typeof auth.api & {
+      registerSSOProvider: (ctx: {
+        body: unknown
+        headers: Headers
+      }) => Promise<{ providerId: string }>
+    }
+    const registration = await api.registerSSOProvider({
       body: providerConfig,
       headers,
     })

apps/sim/app/api/tools/secrets_manager/utils.ts

@@ -1,3 +1,4 @@
+import type { SecretListEntry, Tag } from '@aws-sdk/client-secrets-manager'
 import {
   CreateSecretCommand,
   DeleteSecretCommand,
@@ -61,15 +62,15 @@ export async function listSecrets(
   })
 
   const response = await client.send(command)
-  const secrets = (response.SecretList ?? []).map((secret) => ({
+  const secrets = (response.SecretList ?? []).map((secret: SecretListEntry) => ({
     name: secret.Name ?? '',
     arn: secret.ARN ?? '',
     description: secret.Description ?? null,
     createdDate: secret.CreatedDate?.toISOString() ?? null,
     lastChangedDate: secret.LastChangedDate?.toISOString() ?? null,
     lastAccessedDate: secret.LastAccessedDate?.toISOString() ?? null,
     rotationEnabled: secret.RotationEnabled ?? false,
-    tags: secret.Tags?.map((t) => ({ key: t.Key ?? '', value: t.Value ?? '' })) ?? [],
+    tags: secret.Tags?.map((t: Tag) => ({ key: t.Key ?? '', value: t.Value ?? '' })) ?? [],
   }))
 
   return {

apps/sim/lib/auth/auth.ts

@@ -19,6 +19,7 @@ import {
   oneTimeToken,
   organization,
 } from 'better-auth/plugins'
+import type { BetterAuthPlugin } from 'better-auth/types'
 import { emailHarmony } from 'better-auth-harmony'
 import { and, eq, inArray, sql } from 'drizzle-orm'
 import { headers } from 'next/headers'
@@ -559,12 +560,12 @@ export const auth = betterAuth({
     github: {
       clientId: env.GITHUB_CLIENT_ID as string,
       clientSecret: env.GITHUB_CLIENT_SECRET as string,
-      scopes: ['user:email', 'repo'],
+      scope: ['user:email', 'repo'],
     },
     google: {
       clientId: env.GOOGLE_CLIENT_ID as string,
       clientSecret: env.GOOGLE_CLIENT_SECRET as string,
-      scopes: [
+      scope: [
         'https://www.googleapis.com/auth/userinfo.email',
         'https://www.googleapis.com/auth/userinfo.profile',
       ],
@@ -602,7 +603,6 @@ export const auth = betterAuth({
   emailAndPassword: {
     enabled: true,
     requireEmailVerification: isEmailVerificationEnabled,
-    sendVerificationOnSignUp: isEmailVerificationEnabled, // Auto-send verification OTP on signup when verification is required
     throwOnMissingCredentials: true,
     throwOnInvalidCredentials: true,
     sendResetPassword: async ({ user, url, token }, request) => {
@@ -712,7 +712,7 @@ export const auth = betterAuth({
   },
   plugins: [
     nextCookies(),
-    ...(isSignupEmailValidationEnabled ? [emailHarmony()] : []),
+    ...(isSignupEmailValidationEnabled ? [emailHarmony() as BetterAuthPlugin] : []),
     ...(env.TURNSTILE_SECRET_KEY
       ? [
           captcha({

apps/sim/lib/copilot/orchestrator/tool-executor/index.ts

@@ -954,10 +954,16 @@ async function generateOAuthLink(
   const { headers: getHeaders } = await import('next/headers')
   const reqHeaders = await getHeaders()
 
-  const data = (await auth.api.oAuth2LinkAccount({
+  const api = auth.api as typeof auth.api & {
+    oAuth2LinkAccount: (ctx: {
+      body: { providerId: string; callbackURL: string }
+      headers: Headers
+    }) => Promise<{ url?: string; redirect?: boolean }>
+  }
+  const data = await api.oAuth2LinkAccount({
     body: { providerId, callbackURL },
     headers: reqHeaders,
-  })) as { url?: string; redirect?: boolean }
+  })
 
   if (!data?.url) {
     throw new Error('oAuth2LinkAccount did not return an authorization URL')

apps/sim/socket/middleware/auth.ts

@@ -55,7 +55,15 @@ export async function authenticateSocket(socket: AuthenticatedSocket, next: (err
         origin,
       })
 
-      const session = await auth.api.verifyOneTimeToken({
+      const api = auth.api as typeof auth.api & {
+        verifyOneTimeToken: (ctx: {
+          body: { token: string }
+        }) => Promise<{
+          user: { id: string; name: string; email: string; image?: string | null }
+          session: { activeOrganizationId?: string | null }
+        }>
+      }
+      const session = await api.verifyOneTimeToken({
         body: {
           token,
         },