fix: add verify token hash

[kangmingtay]

What kind of change does this PR introduce?

• Allows passing a token_hash and type in verifyOtp method
• Supports this change on gotrue: feat: allow POST /verify to accept a token hash auth#1165
• Fixes auth.admin.generateLink not working with PKCE #694

[imbhargav5]

So happy to see this!

[github-actions]

🎉 This PR is included in version 2.44.1 🎉

The release is available on:

• GitHub release
• npm package (@latest dist-tag)

Your semantic-release bot 📦🚀

[MitjaBezensek]

Did this really fix #694? For me it still looks broken.

[silentworks]

@MitjaBezensek yes it fixes it, but I need to document how to use this for it to work.

[elbracht]

@silentworks i would find a short explanation / documentation how to use generateLink with PKCE really fantastic 👏

[wyozi]

@elbracht I wrote a short blog post on this: https://catjam.fi/articles/supabase-generatelink-fix

[kgrady13]

@elbracht I wrote a short blog post on this: https://catjam.fi/articles/supabase-generatelink-fix

I sincerely appreciate your blog post 🍻

[yuvalkarmi]

@elbracht thanks for making it so easy and clear! Love this.
By the way, it looks like you first refer to the link response by the variable linkResponse and in the last code snippet by the variable l (and disregard your earlier tokenHash variable). Just a heads up :)

[amitduaaa]

@wyozi I followed your blog to implement something similar but it gives AuthApiError: Email link is invalid or has expired.

https://localhost:3000/api/auth/callback?token_hash=<token_hash>&next=%2Foverview

I create this link and then user clicks on it, gets redirected to /api/auth/callback where I try to verifyOTP using this token_hash but it gives me the mentioned error.

[scottklein7]

@amitduaaa I get this error too, what was your fix?