GitHub - robelest/convex-auth: Library for built-in auth

Features

Every auth method — Password, Google/GitHub/Apple/Microsoft OAuth, magic links, passkeys, TOTP, anonymous, phone, device flow (RFC 8628)
Group SSO — OIDC, SAML 2.0, SCIM 2.0 via sso() with conditional TypeScript gating
API keys — Scoped permissions, per-key rate limiting, rotation, SHA-256 hashing
Groups and memberships — Hierarchical groups, roles, invites, cascade operations
SSR — Cookie-based auth for SvelteKit, TanStack Start, Next.js
Multi-access — auth.ctx(), auth.context(ctx), and auth.http.context(ctx, request) cover app, imperative, and raw HTTP auth
Convex component — Isolated tables, typed helpers, zero-config defaults

Section	Description
Getting Started	Installation, providers, environment variables
API Reference	`auth.user`, `auth.session`, `auth.group`, `auth.key`, and more
Group SSO	OIDC, SAML, SCIM, audit, webhooks
SSR Integration	SvelteKit, TanStack Start, Next.js
Guides	Multi-access, device flow, authorization, production
Reference	Config options, error codes, CLI, architecture

pnpm install
vp run check
vp test --run --project convex

Directory	Description
`packages/auth`	Auth component, server helpers, providers, CLI
`packages/samlify`	Edge-compatible SAML runtime (local fork)
`tests/`	Vitest test suite (convex + node projects)
`docs/`	Starlight documentation site

Name		Name	Last commit message	Last commit date
Latest commit History 548 Commits
.github/workflows		.github/workflows
.vite-hooks		.vite-hooks
.vscode		.vscode
convex		convex
demos		demos
docs		docs
packages		packages
scripts		scripts
tests		tests
.env.schema		.env.schema
.gitignore		.gitignore
.oxfmtrc.json		.oxfmtrc.json
.oxlintrc.json		.oxlintrc.json
AGENTS.md		AGENTS.md
README.md		README.md
convex.json		convex.json
package.json		package.json
pnpm-lock.yaml		pnpm-lock.yaml
pnpm-workspace.yaml		pnpm-workspace.yaml
vite.config.ts		vite.config.ts