https://github.com/ValueMelody/melody-auth
A turnkey OAuth & authentication system, designed for both Cloudflare Workers and Node.js
https://github.com/ValueMelody/melody-auth
authentication cloudflare cloudflare-d1 cloudflare-kv cloudflare-workers facebook-login github-login google-login hono identity-provider mfa-authenticator oauth2 oauth2-client oauth2-server
Last synced: about 2 months ago
JSON representation
A turnkey OAuth & authentication system, designed for both Cloudflare Workers and Node.js
- Host: GitHub
- URL: https://github.com/ValueMelody/melody-auth
- Owner: ValueMelody
- License: mit
- Created: 2024-07-09T19:38:12.000Z (over 1 year ago)
- Default Branch: main
- Last Pushed: 2025-02-05T03:53:47.000Z (10 months ago)
- Last Synced: 2025-02-05T07:08:03.096Z (10 months ago)
- Topics: authentication, cloudflare, cloudflare-d1, cloudflare-kv, cloudflare-workers, facebook-login, github-login, google-login, hono, identity-provider, mfa-authenticator, oauth2, oauth2-client, oauth2-server
- Language: TypeScript
- Homepage: https://auth.valuemelody.com/
- Size: 3.8 MB
- Stars: 85
- Watchers: 0
- Forks: 4
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- Contributing: .github/CONTRIBUTING.md
- License: LICENSE
Awesome Lists containing this project
- fucking-awesome-angular - Melody Auth - Its 🌎 [SDK](www.npmjs.com/package/@melody-auth/angular) enables seamless Angular–melody auth integration with automated state, redirects, and token handling. (Security and Authentication / Authentication)
- awesome-angular - Melody Auth - Its [SDK](https://www.npmjs.com/package/@melody-auth/angular) enables seamless Angular–melody auth integration with automated state, redirects, and token handling. (Security and Authentication / Authentication)
- awesome-cloudflare - melody-auth - und Authentifizierungssystem basierend auf Cloudflare Workers, D1 und KV. | <https://auth.valuemelody.com/> | Aktiv | (Sonstiges)
README
# Melody Auth
**Melody Auth** is a user-friendly, robust solution for implementing and hosting your own OAuth and authentication system.
- Deploy to **Cloudflare** using **Workers, D1, and KV** in just minutes — minimizing infrastructure and DevOps overhead.
- **Self-Host** with **Node.js, Redis, and PostgreSQL** — giving you full control over your data and infrastructure.
[](https://codecov.io/gh/ValueMelody/melody-auth)
**Disclaimer** All French translations provided in this project have been generated by AI. Please review them carefully for accuracy before use.
## What's included?
- **OAuth & Authentication Server** [[Setup]](https://auth.valuemelody.com/auth-server-setup.html) [[Config]](https://auth.valuemelody.com/auth-server-configuration.html)
- **Server-to-Server REST API** for backend integrations [[Setup]](https://auth.valuemelody.com/s2s-api.html) [[Swagger]](https://auth-server.valuemelody.com/api/v1/swagger)
- **Admin Panel** for managing resources (also serves as a full-stack implementation example) [[Setup]](https://auth.valuemelody.com/admin-panel-setup.html)
- **React/Angular/Vue/Web SDK** to seamlessly integrate PKCE-based authentication into your frontend application.
- react-sdk [[Package]](https://www.npmjs.com/package/@melody-auth/react) [[Doc]](https://auth.valuemelody.com/react-sdk.html)
- angular-sdk [[Package]](https://www.npmjs.com/package/@melody-auth/angular) [[Doc]](https://auth.valuemelody.com/angular-sdk.html)
- vue-sdk [[Package]](https://www.npmjs.com/package/@melody-auth/vue) [[Doc]](https://auth.valuemelody.com/vue-sdk.html)
- web-sdk [[Package]](https://www.npmjs.com/package/@melody-auth/web) [[Doc]](https://auth.valuemelody.com/web-sdk.html)
- **Embedded Auth API** for embedding authentication flows directly within your application. [[Setup]](https://auth.valuemelody.com/embedded-auth-api.html) [[Swagger]](https://auth-server.valuemelody.com/api/v1/embedded-swagger)
## Auth Server Features Supported
- OAuth 2.0:
- Authorize
- Token Exchange
- Refresh Token Revoke
- App Consent
- App Scopes
- User Info Retrieval
- OpenID Configuration
- [Authorization](https://auth.valuemelody.com/authentication.html):
- Sign-In
- Passwordless Sign-In
- Sign-Up
- Sign-Out
- Email Verification
- Password Reset
- [Role-Based Access Control](https://auth.valuemelody.com/rbac.html)
- [User Attribute](https://auth.valuemelody.com/user-attributes.html)
- Account Linking
- [Localization](https://auth.valuemelody.com/localization.html)
- External Identity Providers:
- [Social Sign-In](https://auth.valuemelody.com/social-sign-in-provider-setup.html)
- Google Sign-In
- Facebook Sign-In
- GitHub Sign-In
- Discord Sign-In
- Apple Sign-In
- [OIDC Auth Provider Sign-In](https://auth.valuemelody.com/oidc-sso-setup.html)
- [SAML SSO Sign-In (Node.js environment only)](https://auth.valuemelody.com/saml-sso-setup.html)
- [Multi-Factor Authentication](https://auth.valuemelody.com/mfa-setup.html)
- Email MFA
- OTP MFA
- SMS MFA
- MFA Self Enrollment
- Passkey Enrollment
- Recovery Code
- Remember Device for 30 days
- [Policy](https://auth.valuemelody.com/policies.html)
- sign_in_or_sign_up
- update_info
- change_password
- change_email
- reset_mfa
- manage_passkey
- manage_recovery_code
- [saml_sso_[idp_name]](https://auth.valuemelody.com/saml-sso-setup.html#_trigger-login-via-saml-sso-in-the-frontend)
- [oidc_sso_[provider_name]](https://auth.valuemelody.com/oidc-sso-setup.html#_trigger-oidc-redirects-from-your-frontend-via-policy)
- Organization:
- [Branding config override](https://auth.valuemelody.com/branding.html#per-organization-branding)
- [Organization users](https://auth.valuemelody.com/organizations.html)
- [Organization groups](https://auth.valuemelody.com/org-groups.html)
- [Mailer Option](https://auth.valuemelody.com/email-provider-setup.html)
- SendGrid
- Mailgun
- Brevo
- Resend
- Postmark
- SMTP (Node.js environment only)
- [SMS Option](https://auth.valuemelody.com/sms-provider-setup.html)
- Twilio
- JWT Authentication
- [RSA256 based JWT Authentication](https://auth.valuemelody.com/jwt-and-jwks.html)
- [JWT Secret Rotate](https://auth.valuemelody.com/jwt-secret-rotate.html)
- Brute-force Protection:
- Log in attempts
- Password reset attempts
- OTP MFA attempts
- SMS MFA attempts
- Email MFA attempts
- Change Email attempts
- Logging:
- Logger Level
- Email Logs
- SMS Logs
- Sign-in Logs
## Admin Panel & S2S REST API Features Supported
- View Configurations
- Manage Users
- [Impersonation](https://auth.valuemelody.com/impersonation.html)
- Manage User Attributes
- Manage Apps
- [App Level MFA Config](https://auth.valuemelody.com/mfa-setup.html#_app-level-mfa-configuration)
- [App Banner Config](https://auth.valuemelody.com/app-banners.html)
- Manage Scopes
- Manage Roles
- Manage Organizations
- Manage SAML SSO IDPs
- [Manage Logs](https://auth.valuemelody.com/log-management.html)
- [Admin Panel Access Control](https://auth.valuemelody.com/admin-panel-setup.html#custom-role-access-for-the-admin-panel)
## Demo & Examples
- [Demo Site](https://auth-demo.valuemelody.com)
- [Vite React Example](https://github.com/ValueMelody/melody-auth-examples/tree/main/vite-react-demo)
- [Angular Example](https://github.com/ValueMelody/melody-auth-examples/tree/main/angular-example)
- [Vite Vue Example](https://github.com/ValueMelody/melody-auth-examples/tree/main/vite-vue-example)
- [Next.js Full stack implementation Example](https://github.com/ValueMelody/melody-auth/tree/main/admin-panel)
- [Next.js Auth.js Example](https://github.com/ValueMelody/melody-auth-examples/tree/main/next-auth-js-example)
- [React Native Example](https://github.com/ValueMelody/melody-auth-examples/tree/main/react-native-example)
- [Vanilla JavaScript Example](https://github.com/ValueMelody/melody-auth-examples/tree/main/vite-web-example)
- [Embedded Auth API Example](https://github.com/ValueMelody/melody-auth-examples/tree/main/embedded-auth)
## Screenshots
[Authorization Screenshots](https://auth.valuemelody.com/screenshots.html#identity-pages-and-emails)
[Admin Panel Screenshots](https://auth.valuemelody.com/screenshots.html#admin-panel-pages)
## License
This project is licensed under the MIT License. See the LICENSE file for details.