Aura Auth

Introduction

Batteries-included authentication for FastAPI — sessions, accounts, and a ready-made router.

Aura Auth is a small, explicit library for FastAPI and async SQLAlchemy. The default install gives you email/password registration and login with:

  • Identity vs credentials — a User row for who someone is, and Account rows for how they sign in (including provider_id="credential" with a bcrypt hash).
  • Server-side sessions — opaque tokens stored in the database so you can revoke them, list devices, and log out cleanly.
  • Optional cookie transport — HTTP-only session cookies, or Bearer tokens in the Authorization header.

The project is early beta: pin versions in production and follow release notes when upgrading.

Install

Requires Python 3.11+.

uv add aura-auth
# or: pip install aura-auth

Install from GitHub during beta:

uv add "aura-auth @ git+https://github.com/snapwre/aura-auth.git"

Next steps

Quickstart

Wire AuraAuth into a FastAPI app in a few lines.

Architecture

Layers, tables, and how requests flow.

Configuration

AuraAuthConfig and cookie options.

Repository

Source, issues, and contributions.

Quickstart

Mount the auth router, create tables, and protect a route with Depends.

On this page

InstallNext steps