Skip to content

nhost/hasura-auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

931 Commits
.changeset
.changeset
Β 
Β 
.github
.github
Β 
Β 
.husky
.husky
Β 
Β 
.vscode
.vscode
Β 
Β 
build
build
Β 
Β 
docker/initdb.d
docker/initdb.d
Β 
Β 
docs
docs
Β 
Β 
email-templates
email-templates
Β 
Β 
go
go
Β 
Β 
migrations
migrations
Β 
Β 
src
src
Β 
Β 
test
test
Β 
Β 
types
types
Β 
Β 
vendor
vendor
Β 
Β 
.dockerignore
.dockerignore
Β 
Β 
.env.example
.env.example
Β 
Β 
.eslintignore
.eslintignore
Β 
Β 
.eslintrc.js
.eslintrc.js
Β 
Β 
.gitignore
.gitignore
Β 
Β 
.golangci.yaml
.golangci.yaml
Β 
Β 
.prettierignore
.prettierignore
Β 
Β 
.prettierrc.json
.prettierrc.json
Β 
Β 
CHANGELOG.md
CHANGELOG.md
Β 
Β 
DEVELOPERS.md
DEVELOPERS.md
Β 
Β 
LICENSE
LICENSE
Β 
Β 
Makefile
Makefile
Β 
Β 
README.md
README.md
Β 
Β 
SECURITY.md
SECURITY.md
Β 
Β 
apollo.config.js
apollo.config.js
Β 
Β 
audit-ci.jsonc
audit-ci.jsonc
Β 
Β 
flake.lock
flake.lock
Β 
Β 
flake.nix
flake.nix
Β 
Β 
go.mod
go.mod
Β 
Β 
go.sum
go.sum
Β 
Β 
graphql.config.js
graphql.config.js
Β 
Β 
jest.config.js
jest.config.js
Β 
Β 
main.go
main.go
Β 
Β 
package.json
package.json
Β 
Β 
pnpm-lock.yaml
pnpm-lock.yaml
Β 
Β 
tsconfig.build.json
tsconfig.build.json
Β 
Β 
tsconfig.json
tsconfig.json
Β 
Β 

Repository files navigation

Hasura Auth

Authentication for Hasura

license: MIT commitizen: friendly code style: prettier

Core Features

  • πŸ§‘β€πŸ€β€πŸ§‘ Users are stored in Postgres and accessed via GraphQL
  • πŸ”‘ Multiple sign-in methods.
  • ✨ Integrates with GraphQL and Hasura Permissions
  • πŸ” JWT tokens and Refresh Tokens.
  • βœ‰οΈ Emails sent on various operations
  • βœ… Optional checking for Pwned Passwords.

Sign in methods

  • Email and Password - simple email and password method.
  • Email - also called passwordless email or magic link.
  • SMS - also called passwordless sms.
  • Anonymous - sign in users without any method. Anonymous users can be converted to regular users.
  • OAuth providers: Facebook, Google, GitHub, Twitter, Apple, Azure AD, LinkedIn, Windows Live, Spotify, Strava, GitLab, BitBucket, Discord, WorkOS.
  • Security keys with WebAuthn

Deploy Hasura Auth in Seconds

Use Nhost to start using Hasura Auth in seconds.

Using Docker-compose

git clone https://github.com/nhost/hasura-auth.git
cd hasura-auth
cp .env.example .env
docker-compose -f docker-compose-example.yaml up

Configuration

Read our configuration guide to customise the Hasura Auth settings.

Workflows

JWT Signing

The JWT tokens can be signed with either a symmetric key based on HMAC-SHA or with asymmetric keys based on RSA. To configure the JWT signing method, set the environment variable HASURA_GRAPHQL_JWT_SECRET which should follow the same format as Hasura with a few considerations:

  1. Only HS and RS algorithms are supported.
  2. If using RS algorithm, the public key should be in PEM format.
  3. If using RS algorithm, the private key should be in PKCS#8 format inside an extra field signing_key.
  4. If using RS algorithm, an additional field kid can be added to specify the key id in the JWK Set.

When using asymmetric keys, you can get the JWK Set from the endpoing .well-known/jwks.json.

Recipes

Reference

🀝 Contributing

Contributions and issues are welcome. Please have a look at the developer's guide if you want to prepare a pull request.

Feel free to check the issues page.

Show your support

Give a ⭐️ if this project helped you!

πŸ“ License

This project is MIT licensed.

About

Authentication for Hasura.

nhost.io

Topics

nodejs graphql jwt typescript authentication backend sms roles emails hacktoberfest oauth-login hasura magic-link email-password-login hacktoberfest2022

Resources

Readme

License

MIT license

Security policy

Security policy
Activity
Custom properties

Stars

386 stars

Watchers

6 watching

Forks

115 forks
Report repository

Releases 77

v0.35.0 Latest
Nov 19, 2024
+ 76 releases

Packages

No packages published

Contributors 33

+ 19 contributors

Languages