feat(clerk-js,localizations,types): Last authentication strategy (#6722)

Co-authored-by: Alex Carpenter <alex.carpenter@clerk.dev>

Author: tmilewski

.changeset/neat-women-love.md

@@ -0,0 +1,7 @@
+---
+'@clerk/clerk-js': minor
+'@clerk/localizations': patch
+'@clerk/types': patch
+---
+
+Introduce "Last Used" functionality to Sign In and Up

integration/tests/last-authentication-strategy.test.ts

@@ -0,0 +1,119 @@
+import type { Page } from '@playwright/test';
+import { expect, test } from '@playwright/test';
+
+import type { LastAuthenticationStrategy } from '../../packages/types';
+import { appConfigs } from '../presets';
+import { createTestUtils, testAgainstRunningApps } from '../testUtils';
+
+const mockLastAuthenticationStrategyResponse = async (
+  page: Page,
+  lastAuthenticationStrategy: LastAuthenticationStrategy | null | undefined,
+) => {
+  await page.route('**/v1/client?**', async route => {
+    const response = await route.fetch();
+    const json = await response.json();
+    let modifiedJson = json;
+
+    if (lastAuthenticationStrategy === undefined && json.response.last_authentication_strategy) {
+      delete json.response['last_authentication_strategy'];
+      modifiedJson = json;
+    } else {
+      modifiedJson = {
+        ...json,
+        response: {
+          ...json.response,
+          last_authentication_strategy: lastAuthenticationStrategy,
+        },
+      };
+    }
+
+    await route.fulfill({ response, json: modifiedJson });
+  });
+};
+
+testAgainstRunningApps({ withEnv: [appConfigs.envs.withEmailCodes] })(
+  'lastAuthenticationStrategy @generic',
+  ({ app }) => {
+    test.afterAll(async () => {
+      await app.teardown();
+    });
+
+    // TODO(Tom): Remove once the API-side of this feature is fully released. [2025-09-07]
+    test('should not show "Last used" badge when lastAuthenticationStrategy is not present', async ({
+      page,
+      context,
+    }) => {
+      const u = createTestUtils({ app, page, context });
+      await mockLastAuthenticationStrategyResponse(page, undefined);
+
+      await u.po.signIn.goTo();
+      await u.po.signIn.waitForMounted();
+
+      // Ensure no "Last used" badge is present.
+      await expect(page.locator('.cl-lastAuthenticationStrategyBadge')).toHaveCount(0);
+
+      // Ensure none of the social buttons have been pulled to the first row.
+      const socialButtonContainers = u.page.locator('.cl-socialButtons');
+      await expect(socialButtonContainers).toHaveCount(1);
+      await expect(socialButtonContainers.first().locator('.cl-button')).toHaveCount(3);
+    });
+
+    test('should not show "Last used" badge when lastAuthenticationStrategy is null', async ({ page, context }) => {
+      const u = createTestUtils({ app, page, context });
+      await mockLastAuthenticationStrategyResponse(page, null);
+
+      await u.po.signIn.goTo();
+      await u.po.signIn.waitForMounted();
+
+      // Ensure no "Last used" badge is present.
+      await expect(page.locator('.cl-lastAuthenticationStrategyBadge')).toHaveCount(0);
+
+      // Ensure none of the social buttons have been pulled to the first row.
+      const socialButtonContainers = u.page.locator('.cl-socialButtons');
+      await expect(socialButtonContainers).toHaveCount(1);
+      await expect(socialButtonContainers.first().locator('.cl-button')).toHaveCount(3);
+    });
+
+    test('should show "Last used" badge when lastAuthenticationStrategy is oauth_google', async ({ page, context }) => {
+      const u = createTestUtils({ app, page, context });
+      await mockLastAuthenticationStrategyResponse(page, 'oauth_google');
+
+      await u.po.signIn.goTo();
+      await u.po.signIn.waitForMounted();
+
+      // Ensure "Last used" badge is present.
+      const lastUsedBadge = page.locator('.cl-lastAuthenticationStrategyBadge');
+      await expect(lastUsedBadge).toBeVisible();
+      await expect(lastUsedBadge).toHaveCount(1);
+
+      const btn = page.getByRole('button', { name: 'Last used Sign in with Google' });
+      await expect(btn).toBeVisible();
+
+      // Ensure the last used social button has been pulled to the first row.
+      const socialButtonContainers = u.page.locator('.cl-socialButtons');
+      await expect(socialButtonContainers).toHaveCount(2);
+      await expect(socialButtonContainers.first().locator('.cl-button__google')).toHaveCount(1);
+      await expect(socialButtonContainers.last().locator('.cl-button')).toHaveCount(2);
+    });
+
+    test('should show "Last used" badge when lastAuthenticationStrategy is email_address and identifier is toggleable', async ({
+      page,
+      context,
+    }) => {
+      const u = createTestUtils({ app, page, context });
+      await mockLastAuthenticationStrategyResponse(page, 'email_address');
+
+      await u.po.signIn.goTo();
+      await u.po.signIn.waitForMounted();
+
+      // Ensure "Last used" badge is not present.
+      const lastUsedBadge = page.locator('.cl-lastAuthenticationStrategyBadge');
+      await expect(lastUsedBadge).toHaveCount(0);
+
+      // Ensure none of the social buttons have been pulled to the first row.
+      const socialButtonContainers = u.page.locator('.cl-socialButtons');
+      await expect(socialButtonContainers).toHaveCount(1);
+      await expect(socialButtonContainers.first().locator('.cl-button')).toHaveCount(3);
+    });
+  },
+);

packages/clerk-js/bundlewatch.config.json

@@ -1,11 +1,11 @@
 {
   "files": [
-    { "path": "./dist/clerk.js", "maxSize": "818KB" },
+    { "path": "./dist/clerk.js", "maxSize": "819KB" },
     { "path": "./dist/clerk.browser.js", "maxSize": "78KB" },
     { "path": "./dist/clerk.legacy.browser.js", "maxSize": "120KB" },
     { "path": "./dist/clerk.headless*.js", "maxSize": "61KB" },
     { "path": "./dist/ui-common*.js", "maxSize": "117.1KB" },
-    { "path": "./dist/ui-common*.legacy.*.js", "maxSize": "118KB" },
+    { "path": "./dist/ui-common*.legacy.*.js", "maxSize": "120KB" },
     { "path": "./dist/vendors*.js", "maxSize": "45KB" },
     { "path": "./dist/coinbase*.js", "maxSize": "38KB" },
     { "path": "./dist/stripe-vendors*.js", "maxSize": "1KB" },

packages/clerk-js/package.json

@@ -94,7 +94,7 @@
     "@rsdoctor/rspack-plugin": "^0.4.13",
     "@rspack/cli": "^1.4.11",
     "@rspack/core": "^1.4.11",
-    "@rspack/plugin-react-refresh": "^1.4.3",
+    "@rspack/plugin-react-refresh": "^1.5.0",
     "@svgr/webpack": "^6.5.1",
     "@swc/jest": "0.2.39",
     "@types/cloudflare-turnstile": "^0.2.2",

packages/clerk-js/src/core/resources/Client.ts

@@ -3,6 +3,7 @@ import type {
   ClientJSON,
   ClientJSONSnapshot,
   ClientResource,
+  LastAuthenticationStrategy,
   SignedInSessionResource,
   SignInResource,
   SignUpResource,
@@ -23,6 +24,8 @@ export class Client extends BaseResource implements ClientResource {
   lastActiveSessionId: string | null = null;
   captchaBypass = false;
   cookieExpiresAt: Date | null = null;
+  /** Last authentication strategy used by this client; `null` when unknown/disabled. */
+  lastAuthenticationStrategy: LastAuthenticationStrategy | null = null;
   createdAt: Date | null = null;
   updatedAt: Date | null = null;
 
@@ -82,6 +85,7 @@ export class Client extends BaseResource implements ClientResource {
       this.signUp = new SignUp(null);
       this.signIn = new SignIn(null);
       this.lastActiveSessionId = null;
+      this.lastAuthenticationStrategy = null;
       this.cookieExpiresAt = null;
       this.createdAt = null;
       this.updatedAt = null;
@@ -130,6 +134,7 @@ export class Client extends BaseResource implements ClientResource {
       this.lastActiveSessionId = data.last_active_session_id;
       this.captchaBypass = data.captcha_bypass || false;
       this.cookieExpiresAt = data.cookie_expires_at ? unixEpochToDate(data.cookie_expires_at) : null;
+      this.lastAuthenticationStrategy = data.last_authentication_strategy || null;
       this.createdAt = unixEpochToDate(data.created_at || undefined);
       this.updatedAt = unixEpochToDate(data.updated_at || undefined);
     }
@@ -147,6 +152,7 @@ export class Client extends BaseResource implements ClientResource {
       last_active_session_id: this.lastActiveSessionId,
       captcha_bypass: this.captchaBypass,
       cookie_expires_at: this.cookieExpiresAt ? this.cookieExpiresAt.getTime() : null,
+      last_authentication_strategy: this.lastAuthenticationStrategy ?? null,
       created_at: this.createdAt?.getTime() ?? null,
       updated_at: this.updatedAt?.getTime() ?? null,
     };

packages/clerk-js/src/ui/common/constants.ts

@@ -1,4 +1,4 @@
-import type { Attribute } from '@clerk/types';
+import type { Attribute, LastAuthenticationStrategy } from '@clerk/types';
 
 import type { LocalizationKey } from '../localization/localizationKeys';
 import { localizationKeys } from '../localization/localizationKeys';
@@ -8,37 +8,54 @@ type FirstFactorConfig = {
   type: string;
   placeholder: string | LocalizationKey;
   action?: string | LocalizationKey;
+  validLastAuthenticationStrategies: ReadonlySet<LastAuthenticationStrategy>;
 };
 const FirstFactorConfigs = Object.freeze({
   email_address_username: {
     label: localizationKeys('formFieldLabel__emailAddress_username'),
     placeholder: localizationKeys('formFieldInputPlaceholder__emailAddress_username'),
     type: 'text',
     action: localizationKeys('signIn.start.actionLink__use_email_username'),
+    validLastAuthenticationStrategies: new Set<LastAuthenticationStrategy>([
+      'email_code',
+      'email_link',
+      'email_address',
+      'username',
+      'password',
+    ]),
   },
   email_address: {
     label: localizationKeys('formFieldLabel__emailAddress'),
     placeholder: localizationKeys('formFieldInputPlaceholder__emailAddress'),
     type: 'email',
     action: localizationKeys('signIn.start.actionLink__use_email'),
+    validLastAuthenticationStrategies: new Set<LastAuthenticationStrategy>([
+      'email_code',
+      'email_link',
+      'email_address',
+      'password',
+    ]),
   },
   phone_number: {
     label: localizationKeys('formFieldLabel__phoneNumber'),
     placeholder: localizationKeys('formFieldInputPlaceholder__phoneNumber'),
     type: 'tel',
     action: localizationKeys('signIn.start.actionLink__use_phone'),
+    validLastAuthenticationStrategies: new Set<LastAuthenticationStrategy>(['phone_code', 'password']),
   },
   username: {
     label: localizationKeys('formFieldLabel__username'),
     placeholder: localizationKeys('formFieldInputPlaceholder__username'),
     type: 'text',
     action: localizationKeys('signIn.start.actionLink__use_username'),
+    validLastAuthenticationStrategies: new Set<LastAuthenticationStrategy>(['username', 'password']),
   },
   default: {
     label: '',
     placeholder: '',
     type: 'text',
     action: '',
+    validLastAuthenticationStrategies: new Set<LastAuthenticationStrategy>(),
   },
 } as Record<SignInStartIdentifier | 'default', FirstFactorConfig>);
 

packages/clerk-js/src/ui/components/SignIn/SignInStart.tsx

@@ -517,7 +517,13 @@ function SignInStartInternal(): JSX.Element {
   }
 
   // @ts-expect-error `action` is not typed
-  const { action, ...identifierFieldProps } = identifierField.props;
+  const { action, validLastAuthenticationStrategies, ...identifierFieldProps } = identifierField.props;
+
+  const lastAuthenticationStrategy = clerk.client?.lastAuthenticationStrategy;
+  const isIdentifierLastAuthenticationStrategy = lastAuthenticationStrategy
+    ? validLastAuthenticationStrategies?.has(lastAuthenticationStrategy)
+    : false;
+
   return (
     <Flow.Part part='start'>
       {!alternativePhoneCodeProvider ? (
@@ -572,6 +578,7 @@ function SignInStartInternal(): JSX.Element {
                           {...identifierFieldProps}
                           autoFocus={shouldAutofocus}
                           autoComplete={isWebAuthnAutofillSupported ? 'webauthn' : undefined}
+                          isLastAuthenticationStrategy={isIdentifierLastAuthenticationStrategy}
                         />
                       </Form.ControlRow>
                       <InstantPasswordRow field={passwordBasedInstance ? instantPasswordField : undefined} />

packages/clerk-js/src/ui/customizables/elementDescriptors.ts

@@ -76,6 +76,8 @@ export const APPEARANCE_KEYS = containsAllElementsConfigKeys([
   'socialButtonsProviderIcon',
   'socialButtonsProviderInitialIcon',
 
+  'lastAuthenticationStrategyBadge',
+
   'enterpriseButtonsProviderIcon',
 
   'providerIcon',

packages/clerk-js/src/ui/elements/Badge.tsx

@@ -0,0 +1,38 @@
+import { descriptors, localizationKeys, Span } from '../customizables';
+import { common, type PropsOfComponent } from '../styledSystem';
+
+export type LastAuthenticationStrategyBadgeProps = PropsOfComponent<typeof Span> & { overlay?: boolean };
+export const LastAuthenticationStrategyBadge = ({
+  sx,
+  overlay,
+  ...props
+}: LastAuthenticationStrategyBadgeProps): JSX.Element => {
+  return (
+    <Span
+      {...props}
+      elementDescriptor={descriptors.lastAuthenticationStrategyBadge}
+      localizationKey={localizationKeys('lastAuthenticationStrategy')}
+      sx={[
+        t => ({
+          ...common.textVariants(t).caption,
+          background: `linear-gradient(${t.colors.$borderAlpha25}, transparent), ${t.colors.$colorBackground}`,
+          border: `${t.space.$px} solid ${t.colors.$borderAlpha150}`,
+          borderRadius: t.radii.$lg,
+          color: t.colors.$colorMutedForeground,
+          height: t.space.$4x5,
+          paddingInline: t.space.$1x5,
+          whiteSpace: 'nowrap',
+          boxShadow: `0 0 0 1px ${t.colors.$colorBackground}`,
+          ...(overlay && {
+            position: 'absolute',
+            right: -1,
+            top: -1,
+            transform: `translate(${t.space.$2x5}, calc(-50% - ${t.space.$0x5}))`,
+            pointerEvents: 'none',
+          }),
+        }),
+        sx,
+      ]}
+    />
+  );
+};

packages/clerk-js/src/ui/elements/Form.tsx

@@ -7,6 +7,7 @@ import type { LocalizationKey } from '../customizables';
 import { Button, Col, descriptors, Flex, Form as FormPrim, localizationKeys } from '../customizables';
 import { useLoadingStatus } from '../hooks';
 import type { PropsOfComponent } from '../styledSystem';
+import { LastAuthenticationStrategyBadge } from './Badge';
 import type { OTPInputProps } from './CodeControl';
 import { useCardState } from './contexts';
 import { Field } from './FieldControl';
@@ -123,10 +124,12 @@ type CommonInputProps = CommonFieldRootProps & {
   actionLabel?: string | LocalizationKey;
   onActionClicked?: React.MouseEventHandler;
   icon?: React.ComponentType;
+  isLastAuthenticationStrategy?: boolean;
 };
 
 const CommonInputWrapper = (props: PropsWithChildren<CommonInputProps>) => {
-  const { isOptional, icon, actionLabel, children, onActionClicked, ...fieldProps } = props;
+  const { isOptional, isLastAuthenticationStrategy, icon, actionLabel, children, onActionClicked, ...fieldProps } =
+    props;
   return (
     <Field.Root {...fieldProps}>
       <Col
@@ -148,6 +151,9 @@ const CommonInputWrapper = (props: PropsWithChildren<CommonInputProps>) => {
                 onClick={onActionClicked}
               />
             )}
+            {isLastAuthenticationStrategy && !actionLabel && !isOptional && (
+              <LastAuthenticationStrategyBadgeWithFormState />
+            )}
             <Field.Action />
           </Field.LabelRow>
 
@@ -160,6 +166,20 @@ const CommonInputWrapper = (props: PropsWithChildren<CommonInputProps>) => {
   );
 };
 
+const LastAuthenticationStrategyBadgeWithFormState = (
+  props: PropsOfComponent<typeof LastAuthenticationStrategyBadge>,
+) => {
+  const { isLoading, isDisabled } = useFormState();
+  return (
+    <LastAuthenticationStrategyBadge
+      {...props}
+      sx={t => ({
+        opacity: isDisabled || isLoading ? t.opacity.$disabled : 1,
+      })}
+    />
+  );
+};
+
 const PlainInput = (props: CommonInputProps) => {
   return (
     <CommonInputWrapper {...props}>