back to work
04 / Library author2026shipped
Auth: Express middleware.
A production-ready authentication middleware for Express that gives you sessions, JWTs, password reset and role gates without building the same plumbing for the eighth time.
04 / auth
auth: express middleware.
the work
Drop-in middleware: pluggable strategies, refresh-token rotation, RBAC, password reset emails, rate-limited login. Configuration-first so you can adopt one piece at a time. Born out of rewriting the same auth code on three back-to-back projects.
highlights
- 01
Strategy interface lets you swap in OAuth/SAML without forking
- 02
Refresh-token rotation with replay detection
- 03
TypeScript types for `req.user` work without casting