Accounts

Authentication and account flows

Email sign-up, password login, Google sign-in, forgot password, and route protection are all part of the self-hosted auth layer.

Supported account flows

The current auth stack is based on Better Auth with PostgreSQL. It supports email registration, password login, Google sign-in, forgot password, password reset, and protected application routes.

What must be configured before launch

Account flows are only reliable once SMTP and Google OAuth are both configured against the production domain.

Google OAuth redirect URI must match the final HTTPS domain.
SMTP must be able to send verification and reset links.
BETTER_AUTH_SECRET must be stable across restarts.

Operational note

Public launch should not happen until signup, login, reset, and Google callback have all been tested end to end on the real domain.

Back to docs Pricing