Free, Plug-&-Play Auth Kit
Built with NestJS
A production-grade auth starter kit with session and JWT support, login tracking, multi-device auth, email notifications, Dockerized microservices, and everything you need to ship secure auth for your SaaS in a day.
Focus On Innovation
Skip the repetitive tasks and start building your main idea.
π Session + JWT Auth Ready
Pre-wired session + token-based auth strategy with refresh token rotation and cookie security best practices.
π§ Login Tracking + Anomaly Detection
Track login history (IP, device, user-agents, timestamp) and monitor for suspicious activity.
π» Multi-Device Session Management
Log in from multiple devices, view active sessions, and revoke them individually.
𧱠Dockerized Monorepo
Full Docker and Docker Compose setup for dev and prod. Includes both Auth and Notification services in a monorepo.
π Microservice Event System
Auth and Notification services communicate via NestJS EventPattern to trigger email alerts (e.g., login notification, new device, etc.)
π Fully Extensible with NestJS
Built with NestJS and scalable project structure β plug in new services, guards, and strategies easily.
π οΈ Forgot Password Flow
Includes secure token generation, reset email, and expiration logic β ready to plug into your frontend.
π Refresh Token Strategy
Secure refresh tokens with device binding and rotation built in β keep sessions alive, safely.
π§° Shared Utility Library
Includes prebuilt database abstractions and helpers for MongoDB, PostgreSQL, and MariaDB β so you can stay focused on business logic.
Why This Kit?
Unlock a battle-tested Auth system without starting from scratch.
π Save 30+ Hours of Setup
- β Focus on building product logic, not boilerplate auth flows.
- β Faster onboarding with a clean, documented codebase.
- β Reduce time-to-launch with drop-in ready auth modules.
- β Minimize integration errors with working endpoints.
π‘οΈ Secure by Design
- β Built-in session and refresh token flow to reduce token misuse.
- β Device-based session tracking for better control over logins.
- β Secure cookie management with HttpOnly and SameSite settings.
- β Track login history to spot unusual or suspicious behavior.
πͺ Event-Driven Email Notifications
- β Sends verification and reset links via seamless event-based triggers.
- β Decoupled architecture makes the email system easily replaceable or extendable.
- β Works out-of-the-box with popular providers like Resend.
- β Easily trigger custom notifications for login attempts or password changes.
π Session-Aware & Token Refresh
- β Keeps users securely signed in without frequent logins.
- β Built-in session tracking to support multiple devices per user.
- β Supports secure token rotation to prevent hijacking.
- β Integrated session-based logout and token invalidation flows.
π³ Dockerized & Composable
- β Launch locally or on any server in seconds using Docker Compose.
- β Run each service in isolation β perfect for scaling or debugging.
- β Clean, consistent environments across dev, staging, and prod.
- β Easily swap components or add new services without rewiring everything.
Download the Free Auth Kit
Join a growing community of builders and get instant access to the complete starter kit delivered straight to your inbox.
What's Under the Hood
The Free Auth Kit is built on a modern, scalable stack designed for real-world use. Here's how the system works behind the scenes.
Frequently Asked Questions
Everything you need to know before using the Free Auth Kit.