Weblogin Auth SDK

Version 3

A framework-agnostic TypeScript authentication library for Stanford Weblogin integration. Designed for serverless, stateless environments with security-first defaults and cookie-only sessions.

Features

• Framework Agnostic: Works with Next.js, Express.js, and any Web API framework
• TypeScript First: Complete TypeScript implementation with strict typing
• Security Focused: Encrypted sessions, CSRF protection
• Serverless Ready: Cookie-only sessions, no server-side storage required
• Edge Compatible: Session validation in edge functions for ultra-fast performance
• Developer Friendly: Simple API inspired by Auth.js patterns

Documentation

📚 Getting Started - Installation and basic setup for Next.js and Express.js

⚙️ Configuration - Complete configuration reference and environment variables

🔒 Security - Security features, best practices, and threat protection

⚡ Edge Functions - Ultra-fast session validation in edge environments

🚀 Advanced Usage - Custom implementations, performance optimization, and advanced patterns

📖 API Reference - Complete API documentation with examples

🔄 Migration Guide - Migrating from v1.x and other authentication libraries

Key Features

Security First

• SAML 2.0 signature validation
• Encrypted cookie sessions
• CSRF protection

Developer Experience

• TypeScript-first with strict typing
• Framework-agnostic design
• Simple, intuitive API
• Comprehensive error handling
• Detailed logging with automatic PII redaction

Production Ready

• Serverless/stateless architecture
• Cookie-only sessions (no server storage)
• Comprehensive test coverage

License

GNU Version 3 License - see LICENSE for details.

Contributing

Contributions are welcome! Please submit pull requests to our GitHub repository.

Security

Security issues should be reported privately. Please do not open public GitHub issues for security vulnerabilities.

Support

• 📖 Documentation
• 🐛 Issues