Hono — first integration - Authaz

Hono — first integration - Authaz - Docs

AUTHAZ_CLIENT_ID=app_01h...
AUTHAZ_CLIENT_SECRET=secret_...
AUTHAZ_ORGANIZATION_ID=0199...
AUTHAZ_API_KEY=mgmt_01h...

import { Hono } from "hono";
import { serve } from "@hono/node-server";
import {
  createAuthazHandler,
  createAuthMiddleware,
  isAuthenticated,
} from "@authaz/hono";
 
const app = new Hono();
 
// Mount the Authaz handler at /api/auth/*
const authaz = createAuthazHandler({
  clientId: process.env.AUTHAZ_CLIENT_ID!,
  clientSecret: process.env.AUTHAZ_CLIENT_SECRET!,
  organizationId: process.env.AUTHAZ_ORGANIZATION_ID!,
});
app.route("/api/auth", authaz);
 
// Public route
app.get("/", (c) => c.text("Welcome — POST /api/auth/login to sign in."));
 
// Protect /protected and /me with the auth middleware
app.use(
  "*",
  createAuthMiddleware({
    publicPaths: ["/", "/api/auth/*", "/auth/callback"],
    loginPath: "/api/auth/login",
  })
);
 
app.get("/me", async (c) => {
  if (!isAuthenticated(c)) return c.json({ error: "unauthorized" }, 401);
  // The handler also exposes /api/auth/me — redirect for parity
  return c.redirect("/api/auth/me");
});
 
app.get("/protected", (c) =>
  c.json({ message: "You are signed in to Authaz." })
);
 
serve({ fetch: app.fetch, port: 3000 });
console.log("Listening on http://localhost:3000");

import { createAuthazHelpers } from "@authaz/hono";
 
const helpers = createAuthazHelpers({
  organizationId: process.env.AUTHAZ_ORGANIZATION_ID!,
  apiKey: process.env.AUTHAZ_API_KEY!,
});
 
app.get("/who-am-i", async (c) => {
  const user = await helpers.getUser(c);
  if (!user) return c.json({ error: "unauthorized" }, 401);
  return c.json({ id: user.id, email: user.email });
});

Hono — first integration

1. What you'll build#

2. Application setup#

3. Install#

4. Configure#

5. Wire it up#

6. Read the user#

7. Protect a route#

8. Common gotchas#

9. Next steps#