Download
OpenAuth is an authentication system aimed at modern serverless and edge runtimes, providing a cohesive way to add sign-in flows and session management to web apps. It supports common patterns such as OAuth with popular identity providers, email-based links or codes, and passkeys/passwordless options, while exposing a simple API that fits full-stack frameworks. The project is designed to be infrastructure-friendly, aligning with managed stores and serverless platforms so sessions, webhooks, and callbacks work reliably at scale. It emphasizes secure defaults, including robust token handling, CSRF protections, and clear session lifecycles, while leaving room for customization where apps need it. Developers can bring their own database or storage layer and wire it through adapters without rewriting core logic. The goal is to remove boilerplate around sign-up/sign-in, user profiles, and authorization checks so teams can ship features faster.
Features
- Standards‑compliant OAuth 2.0 auth provider compatible with any OAuth client
- Deployable as a standalone service or embeddable into existing apps
- Self‑hostable on Node.js, Bun, AWS Lambda, or Cloudflare Workers
- Themeable UI with ability to opt out or customize
- Stateless design using minimal data storage in KV or DynamoDB
- SST integration with provided components to simplify deployment on AWS or Cloudflare
Project Samples
