Hasura Auth

Authentication for Hasura

Core Features

• 🧑‍🤝‍🧑 Users are stored in Postgres and accessed via GraphQL
• 🔑 Multiple sign-in methods.
• ✨ Integrates with GraphQL and Hasura Permissions
• 🔐 JWT tokens and Refresh Tokens.
• ✉️ Emails sent on various operations
• ✅ Optional checking for Pwned Passwords.
• 👨‍💻 Written 100% in TypeScript.

Sign in methods

• Email and Password - simple email and password method.
• Email - also called passwordless email or magic link.
• SMS - also called passwordless sms.
• Anonymous - sign in users without any method. Anonymous users can be converted to regular users.
• OAuth providers: Facebook, Google, GitHub, Twitter, Apple, Azure AD, LinkedIn, Windows Live, Spotify, Strava, GitLab, BitBucket, Discord, WorkOS.
• Security keys with WebAuthn

Deploy Hasura Auth in Seconds

Use Nhost to start using Hasura Auth in seconds.

Using Docker-compose

git clone https://github.com/nhost/hasura-auth.git
cd hasura-auth
cp .env.example .env
docker-compose -f docker-compose-example.yaml up

Configuration

Read our configuration guide to customise the Hasura Auth settings.

Workflows

• Email and password
• Oauth social providers
• Passwordless with emails (magic links)
• Passwordless with SMS
• Anonymous users
• Change email
• Change password
• Reset password
• Refresh tokens
• Security keys with WebAuthn

Recipes

• Extending Hasura's permissions with Custom JWT claims
• Extending the user schema

Reference

• List of the available environment variables.
• The service comes with an OpenAPI definition which you can also see online.
• Database Schema

🤝 Contributing

Contributions and issues are welcome. Please have a look at the developer's guide if you want to prepare a pull request.

Feel free to check the issues page.

Show your support

Give a ⭐️ if this project helped you!

📝 License

This project is MIT licensed.