Authentication

Novel uses industry best-practices for authenticating users. This is made possible by the grantlibrary and it's support with Fastify.

We don't use an external library like OpenAuth, Auth.js, or Better Auth, as it does not fit the need of the Novel framework.

This article discusses authentication coming from the server.

Novel supports the following authentication modes:

  1. Email / Password

  2. Magic Links

  3. OAuth2

Forget Password, Email Verification, and MFA is also supported.

Signups

You can modify how signups are handled by modifying the built in sign up endpoints and the onboarding lifecycle features in the features directory.

By default these are stored in

https://github.com/madewithnovel/novel/blob/main/app/api/internal/v1/auth-signup/index.ts

and the flow goes into

https://github.com/madewithnovel/novel/blob/main/app/features/lifecycle/signup.ts

Learn more about it below

User Sessions

User sessions are the sessions usually used by your user when they interact with the frontend. These are cookie sessions.

You can have a look at what sessions are below

API Keys

API Keys are also supported when developing your endpoints. These are protected by the API Keys feature.

You can have a look at the feature below

Single-Sign On (SSO)

Changelog

  • 2024-12-20 - Initial Documentation

Last updated

Was this helpful?