StackPatch is a CLI that patches production-ready authentication into Next.js projects. Run one command and get Google & GitHub auth, protected routes, and session handling all as real files inside your repo. -No SaaS -No lock-in -Fully open source.
Hey Product Hunt 👋
What inspired me to build StackPatch was pure repetition.
Every time I started a new Next.js project, authentication wasn’t hard, it was just the same setup over and over again: NextAuth config, routes, providers, protected pages, environment variables.
I didn’t want another hosted service or abstraction. I wanted a way to drop production-ready auth directly into my codebase and fully own it.
That’s how StackPatch started.
My approach evolved from trying to “simplify auth” to something more honest: patching real, editable files into the project using a CLI. No magic, no runtime dependency just code you can read, modify, or delete.
For this launch, I focused on keeping the scope tight:
one command, clear output, and a demo that shows exactly what gets added.
I’d love feedback from the community:
• Does this solve a real pain for you?
• What would you want to patch next?
Happy to answer any questions 🙂
Security updates are always a headache, especially for non-technical users. Love that this simplifies the process. Quick question: does it work with custom-built sites, or mainly for popular CMS platforms like WordPress?
Wow, StackPatch looks amazing! Love that it adds auth as real files in my repo – huge for customization. How does it handle multi-tenancy scenarios, say, separating user data by organization?
Next.js projects vary a lot (App Router vs older patterns, monorepos, path aliases, existing providers/middleware). What’s the hardest integration edge case you’ve had to handle so far, and how do you decide when to support a pattern vs. intentionally say “not supported”?
Looks interesting, I feel like there are a couple good use cases for this. I'm wondering how flexible this is, do you have generic way of defining "patches". Could it also work for other domains and apps that are not Next.js? Is it / could it be combined with AI to automatically patch projects?
This is awesome — I love that it just patches real files into the codebase.
No magic, no hidden stuff, just code you actually own.
Quick question: do you plan to support Role-Based Access Control in the future, or is the focus staying purely on authentication for now?
Can’t wait to try this on my next Next.js project
Congrats on the launch! Love how StackPatch patches battle-tested auth into existing Next.js apps with one command—great DX, zero lock-in, and perfect for production-focused teams.
