Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/rahulc0dy/micro-auth

This is an authentication microservice built using Hono. [ WORK IN PROGRESS ]
https://github.com/rahulc0dy/micro-auth

authentication authentication-backend bun honojs nodejs open-source

Last synced: about 1 month ago
JSON representation

This is an authentication microservice built using Hono. [ WORK IN PROGRESS ]

Awesome Lists containing this project

README 

          


  Authentication Microservice Logo

  


  

    Release Version

  

  

    GitHub Issues

  

  

    GitHub Stars

  




# Micro Auth



A robust authentication microservice built with [Bun](https://bun.sh/) and [Hono](https://hono.dev/).  

This microservice provides essential authentication features, including support for **JWT**, **OAuth**, **Email/Phone

and Password Login**, and **Two-Factor Authentication (2FA)**.



---



[![Tests](https://github.com/rahulc0dy/micro-auth/actions/workflows/run-tests.yml/badge.svg)](https://github.com/rahulc0dy/micro-auth/actions/workflows/run-tests.yml)

[![Builds](https://github.com/rahulc0dy/micro-auth/actions/workflows/lint.yml/badge.svg)](https://github.com/rahulc0dy/micro-auth/actions/workflows/lint.yml)



---



## 🚀 Features



- **🔒 JWT (JSON Web Tokens)**: Secure token-based authentication for stateless session management.

- **🌐 OAuth**: Simplified third-party authentication using providers like Google, Facebook, and GitHub.

- **📧 Email/Phone and Password Login**: Standard user authentication using email or phone.

- **🛡️ Two-Factor Authentication (2FA)**: Enhanced security with OTP-based verification.



---



## 📋 Table of Contents



- [Prerequisites](#-prerequisites)

- [Setup](#-setup)

- [Environment Variables](#-environment-variables)

- [API Endpoints](#-api-endpoints)

- [Usage](#-usage)

- [Technologies Used](#-technologies-used)

- [License](#-license)

- [Contributing](#contributing)



---



## ✅ Prerequisites



- [Bun](https://bun.sh/) (v1.2 or higher)

- [Git](https://git-scm.com/) (v2.0 or higher)

- [Docker](https://www.docker.com/) (optional, for containerized deployment)

- [Node.js](https://nodejs.org/) (if using scripts/tools that require Node)



---



## ⚙️ Setup



1. **Clone the repository:**



   ```bash

   git clone https://github.com/rahulc0dy/micro-auth.git

   cd micro-auth

   ```



2. **Set up environment variables:**



   Create a `.env.production` or `.env` file in the root directory, using variables outlined in `.env.example`.



3. **Install dependencies:**



   ```bash

   bun install

   ```



4. **Run the application:**

   ```bash

   bun run index.ts

   ```

   Or use Docker Compose:

   ```bash

   docker-compose up --build

   ```



---



## 🛠️ Environment Variables



Create a `.env.production` or `.env` file in the root of your project with variables specified in the `.env.example`

file.  

When deploying with Docker Compose, environment variables are injected at runtime and **not bundled in the image** (see

`.dockerignore`).



---



## 🌐 API Endpoints



### Authentication



#### **POST** `/auth/register`



- **Description**: Register a new user with email/phone and password.

- **Request Body:**

  ```json

  {

    "email": "user@example.com",

    "password": "securepassword"

  }

  ```



#### **POST** `/auth/login`



- **Description**: Login with email/phone and password.

- **Request Body:**

  ```json

  {

    "email": "user@example.com",

    "password": "securepassword"

  }

  ```



#### **POST** `/auth/refresh`



- **Description**: Refresh the JWT token.



#### **POST** `/auth/logout`



- **Description**: Logout and invalidate the current session.



### OAuth



#### **GET** `/oauth/:provider`



- **Description**: Redirect to the OAuth provider's login page (e.g., Google).



#### **GET** `/oauth/callback`



- **Description**: Handle the OAuth callback and issue a JWT token.



### 2FA



#### **POST** `/auth/2fa/setup`



- **Description**: Generate a 2FA QR code for the user.



#### **POST** `/auth/2fa/verify`



- **Description**: Verify the OTP code for 2FA.

- **Request Body:**

  ```json

  {

    "otp": "123456"

  }

  ```



---



## 📌 Usage



### Register a New User



```bash

curl -X POST http://localhost:8000/auth/register

    -H "Content-Type: application/json"

    -d '{ "email": "user@example.com", "password": "securepassword" }'

```



### Login



```bash

curl -X POST http://localhost:8000/auth/login

    -H "Content-Type: application/json"

    -d '{ "email": "user@example.com", "password": "securepassword" }'

```



### Set Up 2FA



```bash

curl -X POST http://localhost:8000/auth/2fa/setup

    -H "Authorization: Bearer "

```



### Verify 2FA Code



```bash

curl -X POST http://localhost:8000/auth/2fa/verify

    -H "Authorization: Bearer "

    -d '{ "otp": "123456" }'

```



---



## 🛠️ Technologies Used



- **Bun**: Ultra-fast JavaScript runtime

- **Hono**: Lightweight and fast web framework

- **Drizzle ORM**: SQL ORM for type-safe database access

- **PostgreSQL**: Database backend (with support for `DATABASE_URL`)

- **JWT**: Secure token management

- **OAuth**: Third-party authentication

- **Two-Factor Authentication**: Enhanced user security



---



## 📜 License



This project is licensed under the MIT License. See the [LICENSE](LICENSE) file for details.



---



## Contributing



We welcome contributions to make Micro Auth better for everyone.  

Please review our [Contributing Guidelines](https://github.com/rahulc0dy/micro-auth/blob/master/docs/CONTRIBUTING.md) to

get started.