hectoday
DocsCoursesChangelog GitHub
DocsCoursesChangelog GitHub

Access Required

Enter your access code to view courses.

Invalid code

← All courses

Production Auth Patterns with @hectoday/http

The features every production app needs but tutorials skip. Email verification, session management across devices, step-up authentication, account deletion with data cleanup, and SAML/SSO for enterprise customers.

Intermediate ~7 hours

Before They Start

  1. Why Production Auth Is Different
  2. Project Setup

Email Verification

  1. Why Verify Emails
  2. Building Email Verification
  3. Restricting Unverified Accounts

Session Management

  1. Tracking Sessions Across Devices
  2. Listing and Revoking Sessions
  3. Session Security

Step-Up Authentication

  1. What Is Step-Up Auth
  2. Building Step-Up Auth
  3. Applying Step-Up to Sensitive Routes

Account Deletion

  1. The Right to Be Forgotten
  2. Building Account Deletion
  3. Data Cleanup

SAML and Enterprise SSO

  1. What Is SAML
  2. Building a SAML Service Provider
  3. Just-in-Time Provisioning

Putting It All Together

  1. Production Auth Checklist
  2. Capstone: Production-Ready Auth

© 2026 hectoday. All rights reserved.