This is a complete authentication solution built with Next.js 14 and NextAuth.js v5 (Auth.js). It features robust security practices and real-world features like 2FA, role-based access, OAuth, email verification, and much more. All implemented using reusable components, server/client utilities, and middleware.
This project is the result of an in-depth tutorial that demonstrates how to implement production-grade authentication in a modern full-stack Next.js application.
What you'll find inside:
- Credentials & OAuth login (Google, GitHub)
- Two-Factor Authentication (2FA)
- Email verification flow
- Forgot/reset password feature
- Role-based access control (Admin & User)
- Protected server/client components & API routes
- User settings (change email, password, enable 2FA)
- Custom reusable auth components and hooks
- Session extension, callbacks, and middleware logic
Disclaimer: This project is for educational purposes only and is not intended for production use without further customization.
This project leverages modern technologies and libraries:
- Next.js (App Router) - React framework for web applications.
- React - JavaScript library for building user interfaces.
- TypeScript - JavaScript superset for static typing.
- Tailwind CSS - Utility-first CSS framework for fast and customizable design.
- NextAuth v5 (Auth.js) - Authentication for the Web.
- React Hook Form (form handling)
- Zod (form validation)
- Resend (email service)
- Prisma ORM (serverless database)
- SQLite (can be replaced with PostgreSQL)
- bcryptjs (salt cryptography)
- Lucide Icons
- Email/Password Login
- Social Login with Google & GitHub
- Email Verification
- Forgot & Reset Password
- Two-Factor Authentication (2FA)
- User Roles: Admin & User
- Protect Client/Server Components and API Routes
- Role-based UI Rendering (with RoleGate)
- Change Email (with re-verification)
- Change Password (with current password confirmation)
- Enable/Disable 2FA in User Settings
- Reusable Hooks: useCurrentUser, useRole**
- Reusable Utilities: currentUser, currentRole**
- Session Callbacks & Middleware Integration
git clone https://github.com/pedroestevaodev/advanced-authentication.git
cd advanced-authentication$ bun installCreate a .env.local file in the root and configure the following variables:
DATABASE_URL="tobemodified"
DIRECT_DATABASE_URL="tobemodified"
AUTH_SECRET="tobemodified"
AUTH_URL="http://localhost:3000"
APPLICATION_URL="http://localhost:3000"
GITHUB_CLIENT_ID="tobemodified"
GITHUB_CLIENT_SECRET="tobemodified"
GOOGLE_CLIENT_ID="tobemodified"
GOOGLE_CLIENT_SECRET="tobemodified"
RESEND_API_KEY="tobemodified"
NEXT_PUBLIC_APP_URL="http://localhost:3000"bunx prisma generate
bunx prisma db pushYou can preview the database schema in prisma/schema.prisma.
bun run devVisit http://localhost:3000 to see the application running.
| Command | Description |
|---|---|
dev |
Starts the development server |
build |
Builds the app for production |
start |
Runs the production build |
lint |
Runs ESLint for code quality |
prisma:migrate-dev |
Creates & applies new dev migration |
prisma:migrate-prod |
Applies pending prod migrations |
prisma:generate |
Generates Prisma client |
prisma:reset |
Deletes all migrations |
postinstall |
Runs setup script after install |
To learn more about the stack used in this project:
- Next.js Docs - Learn more about Next.js features and APIs.
- Next.js Learn - Interactive tutorial to learn Next.js.
- React Docs - Access the official React guide.
- Tailwind CSS Docs - Learn how to use Tailwind CSS to style your application.
- Auth.js - Access the official Auth.js guide.
- Resend Docs - Learn how to get Resend set up in your project.
The easiest way to deploy your Next.js application is by using the Vercel Platform, created by the developers of Next.js.
Check out the Next.js deployment documentation for more details.
Make sure to set the environment variables in Vercel > Settings > Environment Variables. Consider switching to PostgreSQL for production environments.
This project is open source and available under the MIT License.
Built with ☕ by Pedro Estevão