Engineering

Posts

c

Highlight
Case studies
Engineering
Integrations
Industry
All
Engineering

Next.js API Route Authentication: How to Secure Your Endpoints

API routes in Next.js work differently from page protection — Route Handlers must return HTTP status codes, not redirects. This guide covers session cookies, Bearer tokens, RBAC, and Server Actions with complete TypeScript examples.

March 26, 2026
Engineering

Next.js Security Best Practices (2026)

Next.js has grown from a simple React framework into a full-stack platform — and with that power comes a wider attack surface. The App Router, Server Components, and Server Actions mean your authentication logic, database queries, and business rules all live in the same codebase as your UI.

March 26, 2026
Engineering

Next.js Middleware Authentication: Protect Routes in App Router

Learn how Next.js middleware works, how to configure the matcher, validate JWTs at the edge, and redirect unauthenticated users — with the CVE-2025-29927 bypass covered.

March 26, 2026
Engineering

How to Add JWT Authentication to Next.js App Router (2026)

Learn how to add JWT authentication to Next.js App Router — the right way. Covers httpOnly cookie storage, edge middleware with jose, and accessing JWT claims in Server Components.

March 21, 2026

Get Started for free

Authgear.com is free for apps unlimited MAUs (Monthly Active Users) with Authgear branding. It is also open source and always free!

Get Started

Talk with our sales team

If you are looking for volume discounts, custom support plans, SLA, or have a different compliance requirements, feel free to contact us!

Contact Us
Preferences

Privacy is important to us, so you have the option of disabling certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may impact your experience on the website.

Accept all cookies

These items are required to enable basic website functionality.

Always active

These items are used to deliver advertising that is more relevant to you and your interests.

These items allow the website to remember choices you make (such as your user name, language, or the region you are in) and provide enhanced, more personal features.

These items help the website operator understand how its website performs, how visitors interact with the site, and whether there may be technical issues.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.