Core 2 is included in the Next.js SDK starting with version 5.0.0. This new version ships with an improved design and UX for its built-in components, no "flash of white page" when authenticating, a substantially improved middleware import, and a variety of smaller DX improvements and housekeeping items. Each of the potentially breaking changes are detailed in this guide, below.
By the end of this guide, you’ll have successfully upgraded your Next.js project to use @clerk/nextjs v5. You’ll learn how to update your dependencies, resolve breaking changes, and find deprecations. Step-by-step instructions will lead you through the process.
Preparing to upgrade
Before uprading, it's highly recommended that you update your Clerk SDKs to the latest Core 1 version (npm i @clerk/nextjs@4). Some changes required for Core 2 SDKs can be applied incrementally to the v5 release, which should contribute to a smoother upgrading experience. After updating, look out for deprecation messages in your terminal and browser console. By resolving these deprecations you'll be able to skip many breaking changes from Core 2.
Note that Core 2 is currently in beta, while we field feedback and ensure stability. Deploying beta versions to production is not recommended and should be done at your own risk.
Additionally, some of the minumum version requirements for some base dependencies have been updated such that versions that are no longer supported or are at end-of-life and are no longer guaranteed to work correctly with Clerk.
Updating Node.js
You need to have Node.js 18.17.0 or later installed. Last year, Node.js 16 entered EOL (End of life) status, so support for this version has been removed across Clerk SDKs. You can check your Node.js version by running node -v in your terminal. Learn more about how to update and install Node.js(opens in a new tab).
Updating React
All react-dependent Clerk SDKs now require you to use React 18 or higher. You can update your project by installing the latest version of react and react-dom.
@clerk/nextjs now requires you to use Next.js version 13.0.4 or later. Check out Next's upgrade guides for more guidance if you have not yet upgraded to Next.js 13:
Whenever you feel ready, go ahead and install the latest beta version of any Clerk SDKs you are using. Make sure that you are prepared to patch some breaking changes before your app will work properly, however. The commands below demonstrate how to install the latest beta.
terminal
npminstall@clerk/nextjs@beta
terminal
yarnadd@clerk/nextjs@beta
terminal
pnpmadd@clerk/nextjs@beta
CLI upgrade helper
Clerk now provides a @clerk/upgrade CLI tool that you can use to ease the upgrade process. The tool will scan your codebase and produce a list of changes you'll need to apply to your project. It should catch the vast majority of the changes needed for a successful upgrade to any SDK including Core 2. This can save you a lot of time reading through changes that don't apply to your project.
To run the CLI tool, navigate to your project and run it in the terminal:
terminal
npx@clerk/upgrade
terminal
yarndlx@clerk/upgrade
terminal
pnpmdlx@clerk/upgrade
If you are having trouble with npx, it's also possible to install directly with npm i @clerk/upgrade -g, and can then be run with the clerk-upgrade command.
Breaking Changes
Component design adjustments
The new version ships with improved design and UX across all of Clerk's UI components. If you have used the appearance prop or tokens for a custom theme, you will likely need to make some adjustments to ensure your styling is still looking great. If you're using the localization prop you will likely need to make adjustments to account for added or removed localization keys.
User and customer feedback about authMiddleware() has been clear in that Middleware logic was a often friction point. As such, in v5 you will find a completely new Middleware helper called clerkMiddleware() that should alleviate the issues folks had with authMiddleware().
The primary change from the previous authMiddleware() is that clerkMiddleware() does not protect any routes by default, instead requiring the developer to add routes they would like to be protected by auth. This is a substantial contrast to the previous authMiddleware(), which protected all routes by default, requiring the developer to add exceptions. The API was also substantially simplified, and it has become easier to combine with other Middleware helpers smoothly as well.
Here's an example that demonstrates route protection based on both authentication and authorization:
middleware.ts
import { clerkMiddleware, createRouteMatcher } from'@clerk/nextjs/server';constisDashboardRoute=createRouteMatcher(['/dashboard(.*)']);constisAdminRoute=createRouteMatcher(['/admin(.*)']);exportdefaultclerkMiddleware((auth, req) => {// Restrict admin route to users with specific roleif (isAdminRoute(req)) auth().protect({ role: 'org:admin' });// Restrict dashboard routes to signed in usersif (isDashboardRoute(req)) auth().protect();});exportconstconfig= { matcher: ['/((?!.*\\..*|_next).*)', '/', '/(api|trpc)(.*)'],};
A couple things to note here:
The createRouteMatcher helper makes it easy to define route groups that you can leverage inside the Middleware function and check in whichever order you'd like. Note that it can take an array of routes as well.
With clerkMiddleware, you're defining the routes you want to be protected, rather than the routes you don't want to be protected.
See the clerkMiddleware() docs for more information and detailed usage examples.
Migrating to clerkMiddleware()
Clerk strongly recommends migrating to the new clerkMiddleware() for an improved DX and access to all present and upcoming features. However, authMiddleware(), while deprecated, will continue to work in v5 and will not be removed until the next major version, so you do not need to make any changes to your Middleware setup this version.
The most basic migration will be updating the import and changing out the default export, then mirroring the previous behavior of protecting all routes as such:
Of course, in most cases you'll have a more complicated setup than this. You can find some examples below for how to migrate a few common use cases. Be sure to review the clerkMiddleware() documentation if your specific use case is not mentioned.
By default, clerkMiddleware() treats all pages as public unless explicitly protected. If you prefer for it to operate the other way around (all pages are protected unless explicitly made public), you can reverse the middleware logic in this way:
import { clerkMiddleware, createRouteMatcher} from"@clerk/nextjs/server"constisPublicRoute=createRouteMatcher(["/", "/contact"])exportdefaultclerkMiddleware((auth, req) => {if (isPublicRoute(req)) return// if it's a public route, do nothingauth().protect() // for any other route, require auth})exportconstconfig= { matcher: ["/((?!.+\\.[\\w]+$|_next).*)", "/", "/(api|trpc)(.*)"],}
You can call other Middlewares inside clerkMiddleware(), giving you more direct control over what is called where. An example would be next-intl(opens in a new tab) to add internationalization to your app.
As part of this release, some of the top-level exports of @clerk/nextjs have been changed in order to improve bundle size and tree-shaking efficiency. These changes have resulted in a ~75% reduction in build size for middleware bundles. However, you will likely need to make some changes to import paths as a result.
Use the CLI tool to automatically find occurences of imports that need to be changed.
Previously these exports have been exported both from @clerk/nextjs and @clerk/nextjs/server. As of v5, they are only exported from the latter.
import { auth, currentUser, authMiddleware, buildClerkProps, verifyToken, verifyJwt, decodeJwt, signJwt, constants, redirect, createAuthenticateRequest, createIsomorphicRequest,- } from "@clerk/nextjs"+ } from "@clerk/nextjs/server"
Exports related to errors are now under @clerk/nextjs/errors.
import { isClerkAPIResponseError, isEmailLinkError, isKnownError, isMetamaskError, EmailLinkErrorCode,- } from "@clerk/nextjs"+ } from "@clerk/nextjs/errors"
The @clerk/nextjs import will work with both the App and Pages Router.
- import { } from "@clerk/nextjs/app-beta"+ import { } from "@clerk/nextjs"
Some behavior may have changed between Clerk's beta and the stable release. Please check on your end if behavior stayed the same.
The top-level exports support SSR by default now.
- import { } from "@clerk/nextjs/ssr"+ import { } from "@clerk/nextjs"
- import { } from "@clerk/nextjs/edge-middleware"+ import { } from "@clerk/nextjs"
- import { } from "@clerk/nextjs/edge-middlewarefiles"+ import { } from "@clerk/nextjs"
The @clerk/nextjs/api subpath was removed completely. It re-exported helpers from @clerk/clerk-sdk-node and its types. If you relied on these, import from @clerk/clerk-sdk-node directly instead.
import type { ClerkMiddleware, ClerkMiddlewareOptions, LooseAuthProp, RequireAuthProp, StrictAuthProp, WithAuthProp- } from "@clerk/nextjs/api"+ } from "@clerk/clerk-sdk-node"- import { requireAuth, withAuth } from "@clerk/nextjs/api"+ import { requireAuth, withAuth } from "@clerk/clerk-sdk-node"
After sign up/in/out URL handling
Defining redirect URLs for after sign up, in, and/or out via the Clerk Dashboard has been removed in Core 2. In your Clerk Dashboard, under Paths in the sidebar on the left, there is a section called Component paths that has a deprecation warning. In Core 2, this functionality has been removed, and specifying redirect paths via the dashboard will no longer work. If you need to pass a redirect URL for after sign in/up/out, there are a few different ways this can be done(opens in a new tab), from environment variables to
Middleware to supplying them directly to the relevant components.
As part of this change, the default URL for each of these props has been set to /, so if you are passing / explicitly to any one of the above props, that line is no longer necessary and can be removed.
In the previous version of Clerk's SDKs, if you decode the session token that Clerk returns from the server, you'll currently find an orgs claim on it. It lists all the orgs associated with the given user. Now, Clerk returns the org_id, org_slug, and org_role of the active organization.
The orgs claim was part of the JwtPayload. Here are a few examples of where the JwtPayload could be found.
If you would like to have your JWT return all of the user's organizations, you can create a custom JWT template in your dashboard. Add { "orgs": "user.organizations" } to it.
Path routing is now the default
On components like <SignIn /> you can define the props routing and path. routing describes the routing strategy that should be used and can be set to 'hash' | 'path' | 'virtual'. path defines where the component is mounted when routing='path' is used.
In the latest version, the defaultrouting strategy has become 'path'. Unless you change the routing prop, you will need to define the path prop. The affected components are:
<SignIn />
<SignUp />
<UserProfile />
<CreateOrganization />
<OrganizationProfile />
Here is how you would use the components going forward:
For the @clerk/nextjs SDK, you can avoid needing to explicitly pass the path to the <SignIn /> and <SignUp /> components by setting environment variables for the sign in/up URLs like so:
If you have defined both environment variables as above, you can use the <SignIn /> and <SignUp /> components without any props:
<SignIn /><SignUp />
Image URL Name Consolidation
There are a number of Clerk primitives that contain images, and previously they each had different property names, like avatarUrl, logoUrl, profileImageUrl, etc. In order to promote consistency and make it simpler for developers to know where to find associated images, all image properties are now named imageUrl. See the list below for all affected classes:
The profileImageUrl property of any OrganizationMembershipPublicUserData object has been changed to imageUrl.
Deprecation removals & housekeeping
As part of this major version, a number of previously deprecated props, arugments, methods, etc. have been removed. Additionally there have been some changes to things that are only used internally, or only used very rarely. It's highly unlikely that any given app will encounter any of these items, but they are all breaking changes, so they have all been documented below.
For this section more than any other one, please use the CLI upgrade tool (npx @clerk/upgrade). Changes in this
section are very unlikely to appear in your codebase, the tool will save time looking for them.
Deprecation removals
If you are updating a user's password via the User.update method(opens in a new tab), it must be changed to User.updatePassword(opens in a new tab) instead. This method will require the current password as well as the desired new password. We made this update to improve the security of password changes. Example below:
The CLERK_API_KEY environment variable was renamed to CLERK_SECRET_KEY. You can visit your Clerk dashboard(opens in a new tab) to copy/paste the new keys after choosing your framework. Make sure to update this in all environments (e.g. dev, staging, production).
The CLERK_FRONTEND_API environment variable was renamed to CLERK_PUBLISHABLE_KEY. You can visit your Clerk dashboard(opens in a new tab) to copy/paste the new keys after choosing your framework. Make sure to update this in all environments (e.g. dev, staging, production). Note: The values are different, so this is not just a key replacement. More information.
If you are using CLERK_JS_VERSION as an environment variable, it should be changed to NEXT_PUBLIC_CLERK_JS_VERSION instead.
This change brings our SDK up to date with the latest standards for next.js - that public environment variables should have the NEXT_PUBLIC_ prefix. This env variable is not private, so it should get the public prefix.
The apiKey argument passed to authMiddleware must be changed to secretKey.
The frontendApi argument passed to createClerkClient must be changed to publishableKey. Note that the values of the two keys are different, so both keys and values need to be changed. You can find your application's publishable key in the Clerk dashboard.
The frontendApi prop passed to <ClerkProvider> was renamed to publishableKey. Note: The values are different, so this is not just a key replacement. You can visit your Clerk dashboard(opens in a new tab) to copy/paste the new keys after choosing your framework. Make sure to update this in all environments (e.g. dev, staging, production). More information.
If you are using the @clerk/nextjs/app-beta import anywhere, it should use @clerk/nextjs instead. The app-beta import has been removed as our App Router support is stable.
The @clerk/nextjs import will work with both App Router and Pages Router.
If you are importing from @clerk/nextjs/ssr, you can use @clerk/nextjs instead. Our top-level import supports SSR functionality by default now, so the subpath on the import is no longer needed. This import can be directly replaced without any other considerations.
This deprecated import has been replaced by @clerk/nextjs. Usage should now look as such: import { authMiddleware } from @clerk/nextjs. There may be changes in functionality between the two exports depending on how old the version used is, so upgrade with caution.
This deprecated import has been replaced by @clerk/nextjs. Usage should now look as such: import { authMiddleware } from @clerk/nextjs. There may be changes in functionality between the two exports depending on how old the version used is, so upgrade with caution.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the CLERK_API_URL environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the CLERK_API_VERSION environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the NEXT_PUBLIC_CLERK_JS_URL environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the NEXT_PUBLIC_CLERK_JS_VERSION environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the NEXT_PUBLIC_CLERK_DOMAIN environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the NEXT_PUBLIC_CLERK_IS_SATELLITE environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the NEXT_PUBLIC_CLERK_PROXY_URL environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the CLERK_SECRET_KEY environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the NEXT_PUBLIC_CLERK_SIGN_IN_URL environment variable.
This deprecated constant has been removed as an export from @clerk/nextjs. Instead, set and use the NEXT_PUBLIC_CLERK_SIGN_UP_URL environment variable.
The import subpath @clerk/nextjs/api has been removed. This includes the following imports:
// These have been removedimport { ClerkMiddleware, ClerkMiddlewareOptions, LooseAuthProp, RequireAuthProp, StrictAuthProp, WithAuthProp,} from'@clerk/nextjs/api';
If you still need to use any of these functions, they can be instead imported from @clerk/clerk-sdk-node.
The MultiSessionAppSupport import path has changed from @clerk/nextjs to @clerk/nextjs/internal. You must update your import path in order for it to work correctly. Note that internal imports are not intended for usage and are outside the scope of semver. Example below of the fix that needs to be made:
- import { MultiSessionAppSupport } from "@clerk/nextjs"+ import { MultiSessionAppSupport } from "@clerk/nextjs/internal"
If you are using NEXT_PUBLIC_CLERK_JS as an environment variable, it should be changed to NEXT_PUBLIC_CLERK_JS_URL instead. This variable was renamed for consistency across public APIs. Make sure to also check your production host configuration when changing environment variable values.
Other Breaking changes
There have been a couple changes to the pagination arguments that can be passed into this function - limit has been renamed to pageSize, and offset has been renamed to initialPage. This will help to make it more clear and simple to reason about pagination control. Example of how changes might look below:
There have been a couple changes to the pagination arguments that can be passed into this function - limit has been renamed to pageSize, and offset has been renamed to initialPage. This will help to make it more clear and simple to reason about pagination control. Example of how changes might look below:
There have been a couple changes to the pagination arguments that can be passed into this function - limit has been renamed to pageSize, and offset has been renamed to initialPage. This will help to make it more clear and simple to reason about pagination control. Example of how changes might look below:
There have been a couple changes to the pagination arguments that can be passed into this function - limit has been renamed to pageSize, and offset has been renamed to initialPage. This will help to make it more clear and simple to reason about pagination control. Example of how changes might look below:
There have been a couple changes to the pagination arguments that can be passed into this function - limit has been renamed to pageSize, and offset has been renamed to initialPage. This will help to make it more clear and simple to reason about pagination control. Example of how changes might look below:
There have been a couple changes to the pagination arguments that can be passed into this function - limit has been renamed to pageSize, and offset has been renamed to initialPage. This will help to make it more clear and simple to reason about pagination control. Example of how changes might look below:
There have been a couple changes to the pagination arguments that can be passed into this function - limit has been renamed to pageSize, and offset has been renamed to initialPage. This will help to make it more clear and simple to reason about pagination control. Example of how changes might look below:
There have been a couple changes to the pagination arguments that can be passed into this function - limit has been renamed to pageSize, and offset has been renamed to initialPage. This will help to make it more clear and simple to reason about pagination control. Example of how changes might look below:
The response payload of Users.getOrganizationInvitationList was changed as part of the v5 release. Rather than directly returning data, the return signature is now { data, totalCount }. Since backend API responses are paginated, the totalCount property is helpful in determining the total number of items in the response easily, and this change in the backend SDK aligns the response shape with what the backend API returns directly.
Here's an example of how the response shape would change with this modification:
The return type for this function was previously [Items] but has now been updated to { data: [Items], totalCount: number }. Since Clerk's API responses are paginated, the totalCount property is helpful in determining the total number of items in the response easily. A before/after code example can be seen below:
The return type for this function was previously [Items] but has now been updated to { data: [Items], totalCount: number }. Since Clerk's API responses are paginated, the totalCount property is helpful in determining the total number of items in the response easily. A before/after code example can be seen below:
The response payload of Users.getOrganizationList was changed as part of the v5 release. Rather than directly returning data, the return signature is now { data, totalCount }. Since backend API responses are paginated, the totalCount property is helpful in determining the total number of items in the response easily, and this change in the backend SDK aligns the response shape with what the backend API returns directly.
Here's an example of how the response shape would change with this modification:
The return type for this function was previously [Items] but has now been updated to { data: [Items], totalCount: number }. Since Clerk's API responses are paginated, the totalCount property is helpful in determining the total number of items in the response easily. A before/after code example can be seen below:
setSession should be replaced with setActive. The format of the parameters has changed slightly - setActive takes an object where setSession took params directly. The setActive function also can accept an organization param that is used to set the currently active organization. The return signature did not change. Read the API documentation for more detail. This function should be expected to be returned from one of the following Clerk hooks: useSessionList, useSignUp, or useSignIn. Some migration examples:
The value of this export has changed from https://api.clerk.dev to https://api.clerk.com. If you were relying on the text content of this value not changing, you may need to make adjustments.
Across Clerk's documentation and codebases the term "magic link" was changed to "email link" as it more accurately reflects the functionality.
Across Clerk's documentation and codebases the term "magic link" was changed to "email link" as it more accurately reflects functionality.
Across Clerk's documentation and codebases the term "magic link" was changed to "email link" as it more accurately reflects the functionality.
The isMetamaskError import path has changed from @clerk/react to @clerk/react/errors. You must update your import path in order for it to work correctly. Example below of the fix that needs to be made:
- import { isMetamaskError } from "@clerk/react"+ import { isMetamaskError } from "@clerk/react/errors"
The WithSession higher order component has been removed. If you would still like to use this function in the way its implemented, it can be created quickly using Clerk's custom hooks(opens in a new tab). An example of how to do so is below:
exportconstWithSession= ({ children }) => {constsession=useSession();if (typeof children !=='function') thrownewError();return {children(session)};};
The WithClerk higher order component has been removed. If you would still like to use this function in the way its implemented, it can be created quickly using Clerk's custom hooks(opens in a new tab). An example of how to do so is below:
exportconstWithClerk= ({ children }) => {constclerk=useClerk();if (typeof children !=='function') thrownewError();return {children(clerk)};};
The WithUser higher order component has been removed. If you would still like to use this function in the way its implemented, it can be created quickly using Clerk's custom hooks(opens in a new tab). An example of how to do so is below:
exportconstWithUser= ({ children }) => {constuser=useUser();if (typeof children !=='function') thrownewError();return {children(user)};};
The withClerk higher order function has been removed. If you would still like to use this function in the way its implemented, it can be created quickly using Clerk's custom hooks(opens in a new tab). An example of how to do so is below:
The withSession higher order function has been removed. If you would still like to use this function in the way its implemented, it can be created quickly using Clerk's custom hooks(opens in a new tab). An example of how to do so is below:
The withUser higher order function has been removed. If you would still like to use this function in the way its implemented, it can be created quickly using Clerk's custom hooks(opens in a new tab). An example of how to do so is below: