Download
This project is an unopinionated authentication library for Node.js APIs that focuses on adding an auth layer without forcing a specific framework or application style. It’s built to slot into popular server stacks like Express, Koa, Hapi, or Fastify, and it stays compatible with different API styles including REST and GraphQL. The library concentrates on the core authentication schemes many APIs need, including bearer token authentication and basic username/password credentials. It also supports pulling credentials from common request locations, prioritizing standards-based headers while allowing practical alternatives when needed. The design aims to keep authentication logic centralized and consistent, so you avoid copy-pasting auth checks across handlers and middleware. In short, it provides a small, reusable abstraction for authenticating requests that you can adapt to your project’s policies and user model.
Features
- Framework-agnostic authentication layer for Node.js APIs
- Supports Bearer token authentication for service-to-service and API keys
- Supports Basic authentication with username/password credentials
- Works with REST and GraphQL request flows
- Standard-first credential parsing via common HTTP headers
- Unopinionated design that integrates with your existing user and policy logic
Project Samples
