// the find
vercel/nextjs-postgres-auth-starter
Next.js + Tailwind + Typescript + Drizzle + NextAuth + PostgreSQL starter template.
A Vercel-official starter wiring together Next.js App Router, NextAuth v5, Drizzle ORM, and Neon Postgres into a working email/password auth flow. It exists to get you from zero to deployed auth in under an hour, not to be a production-grade foundation you build a SaaS on.
The stack choices are sensible and current — Drizzle over Prisma means lighter runtime, better SQL visibility, and no Rust binary to babysit in CI. NextAuth v5 (beta) with the App Router credential provider is wired correctly, which is genuinely tricky to get right from scratch. The one-click Vercel deploy button actually works and provisions a Neon database automatically, so the 'zero to running' path is real. Middleware-based route protection is in place and correct — the protected route won't leak on a cold fetch.
Last commit was June 2024 and it still has 'mysql' in its topics despite being a Postgres repo — signals low maintenance attention. No password hashing is visible in the README or directory tree; if bcrypt/argon2 isn't in the register route, someone will ship plaintext passwords without noticing. There's no email verification step, so the 'email + password' login is really just 'whatever string you typed + password'. NextAuth v5 was still in beta when this was last touched, meaning the API surface may have shifted under it since then.