Secure Authentication System

A robust authentication system built with Next.js, Prisma, and Neon PostgreSQL, featuring email verification, password reset, and rate limiting.

Features

🔐 Secure user authentication
✉️ Email verification
🔑 Password reset functionality
🛡️ Rate limiting protection
🔒 Secure password hashing with bcrypt
🎫 JWT-based session management
📝 Input validation using Zod
🚦 Rate limiting for security
🗃️ PostgreSQL database with Prisma ORM

Setup

Install dependencies:

bun install

Set up environment variables:

cp .env.example .env

Edit .env with your configuration:

Get a PostgreSQL database URL from Neon
Get an API key from Resend for email services
Generate a secure JWT secret
Set your application URL

Initialize the database:

bunx prisma db push

API Endpoints

POST /api/auth/register

Register a new user

{
  "email": "[email protected]",
  "password": "securepassword",
  "name": "John Doe"
}

POST /api/auth/login

Login with credentials

{
  "email": "[email protected]",
  "password": "securepassword"
}

POST /api/auth/verify

Verify email address

{
  "token": "verification-token"
}

POST /api/auth/forgot-password

Request password reset

{
  "email": "[email protected]"
}

POST /api/auth/reset-password

Reset password with token

{
  "token": "reset-token",
  "password": "newpassword"
}

Security Features

Password Hashing: Uses bcrypt for secure password storage
Rate Limiting: Prevents brute force attacks
JWT Tokens: Secure session management
HTTP-Only Cookies: Prevents XSS attacks
Input Validation: Prevents injection attacks
Security Headers: Protection against common web vulnerabilities
Email Verification: Prevents fake email registrations

Rate Limits

Login: 5 attempts per minute
Register: 3 attempts per hour
Forgot Password: 3 attempts per hour
Reset Password: 3 attempts per hour
Email Verification: 5 attempts per 5 minutes

Environment Variables

DATABASE_URL=           # Neon PostgreSQL connection URL
JWT_SECRET=            # Secret key for JWT signing
RESEND_API_KEY=        # Resend API key for emails
NEXT_PUBLIC_APP_URL=   # Your application URL
NODE_ENV=              # development/production

Database Schema

model User {
  id                String    @id @default(uuid())
  email             String    @unique
  password          String
  name              String?
  emailVerified     DateTime?
  verificationToken String?   @unique
  resetToken        String?   @unique
  resetTokenExpires DateTime?
  createdAt         DateTime  @default(now())
  updatedAt         DateTime  @updatedAt
}

Name		Name	Last commit message	Last commit date
Latest commit History 17 Commits
actions		actions
app		app
components		components
data		data
lib		lib
prisma		prisma
public		public
schemas		schemas
types		types
.env.example		.env.example
.gitignore		.gitignore
README.md		README.md
bun.lockb		bun.lockb
components.json		components.json
env.d.ts		env.d.ts
eslint.config.mjs		eslint.config.mjs
middleware.ts		middleware.ts
next.config.ts		next.config.ts
package.json		package.json
postcss.config.mjs		postcss.config.mjs
routes.ts		routes.ts
tailwind.config.ts		tailwind.config.ts
tsconfig.json		tsconfig.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Secure Authentication System

Features

Setup

API Endpoints

POST /api/auth/register

POST /api/auth/login

POST /api/auth/verify

POST /api/auth/forgot-password

POST /api/auth/reset-password

Security Features

Rate Limits

Environment Variables

Database Schema

About

Uh oh!

Releases

Packages

Uh oh!

Languages

YanuarArif/nextauth

Folders and files

Latest commit

History

Repository files navigation

Secure Authentication System

Features

Setup

API Endpoints

POST /api/auth/register

POST /api/auth/login

POST /api/auth/verify

POST /api/auth/forgot-password

POST /api/auth/reset-password

Security Features

Rate Limits

Environment Variables

Database Schema

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Languages

Packages