Next.js JWT Authentication Example

A minimalist Next.js project demonstrating route protection with JWT authentication for admin pages.

Deploy Your Own

Overview

This starter provides a clean separation between public and admin pages with a simple JWT-based authentication system. It's ideal for:

Projects requiring protected admin areas
Sites with pre-defined admin users (no registration needed)
Simple authentication without complex user management

Live Demo

Default credentials: username: abc | password: xyz

Features

Route Protection: Only authenticated users can access admin pages
JWT Authentication: Secure token-based auth with 30-day expiration
Middleware-based Protection: All /admin/* routes automatically protected
Smart Redirects: Authenticated users are redirected from login to admin dashboard
Modern Stack: Built with Next.js 15+, React 19+, and TailwindCSS 4
TypeScript: Fully typed for better developer experience

Project Structure

src/
├── app/
│   ├── (admin)/admin/     # Protected admin routes
│   │   ├── login/         # Admin login page
│   │   └── page.tsx       # Admin dashboard
│   ├── (site)/            # Public pages
│   ├── api/auth/          # Authentication API endpoints
│   │   ├── login/         # Login API
│   │   └── logout/        # Logout API
│   └── components/        # Shared components
├── middleware.ts          # Route protection logic

How It Works

Route Protection

The middleware (src/middleware.ts) intercepts requests to /admin/* routes:

Unauthenticated users trying to access /admin/* are redirected to /admin/login
Authenticated users trying to access /admin/login are redirected to /admin/
Authentication is verified by checking the JWT token in cookies

Authentication Flow

User submits credentials on the login page
The /api/auth/login endpoint verifies credentials against environment variables
On success, a JWT token is generated and stored in an HTTP-only cookie
The middleware validates this token for all admin route requests

Setup

Clone the repository

git clone https://github.com/C0ldSmi1e/nextjs-jwt-login-example.git
cd nextjs-jwt-login-example

Install dependencies
```
npm install
# or
yarn install
```

Configure environment variables Create a .env.local file (see .env.example):

JWT_SECRET=your-secret-key
ADMIN_USERS={"username1": "password1", "username2": "password2"}

Run the development server
```
npm run dev
# or
yarn dev
```

License

MIT License

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
public		public
src		src
.env.example		.env.example
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
eslint.config.mjs		eslint.config.mjs
next.config.ts		next.config.ts
package-lock.json		package-lock.json
package.json		package.json
postcss.config.mjs		postcss.config.mjs
tsconfig.json		tsconfig.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Next.js JWT Authentication Example

Deploy Your Own

Overview

Features

Project Structure

How It Works

Route Protection

Authentication Flow

Setup

License

About

Uh oh!

Releases

Packages

Uh oh!

Languages

License

C0ldSmi1e/nextjs-jwt-authentication-example

Folders and files

Latest commit

History

Repository files navigation

Next.js JWT Authentication Example

Deploy Your Own

Overview

Features

Project Structure

How It Works

Route Protection

Authentication Flow

Setup

License

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Languages

Packages