Skip to content

Guides

Task-oriented how-tos for the things you'll actually do with crudauth. Each guide is self-contained, shows the setup that produces the endpoints, and links into the API Reference for the details.

  • Authentication

    Protect routes, run cookie sessions and bearer tokens, add OAuth, and gate sensitive actions with sudo.

    Authentication →

  • Accounts

    Registration, email verify / reset / change, passwords, and device & session management.

    Accounts →

  • Infrastructure

    Storage and lifespan, rate limiting and lockout, and lifecycle hooks.

    Infrastructure →

Where to start

Pick the guide that matches what you're building

A web app (server-rendered or SPA)? Start with Sessions, then Protecting routes.

An API, mobile app, or CLI? Start with Bearer tokens.

Both a web app and an API? See Multiple transports; they share one identity.

Social login? See OAuth.

Sign-up, email verification, or password reset? See the Accounts group.

Every capability is additive. Start with the default session setup and add transports, OAuth, and email flows as you need them, without rewriting how your routes authorize.

Start with Protecting routes →