Simplify your stack and build anything. Or everything.

Content Management System

Create with a minimal, powerful editing experience. Extend effortlessly.

Enterprise App Builder

Build sophisticated enterprise tools while reducing development costs.

Headless E-commerce

Manage all your content, alongside your products, in a single, powerful editing experience.

Digital Asset Management

Ensure brand consistency by seamlessly managing digital assets within your CMS.

Build tomorrow’s web with a modern solution you truly own.

For Marketing Teams

Advanced features like Visual Editing and Live Preview are giving a head back to the headless CMS.

Learn how Payload delivers for software consultancies with a content framework that can build anything.

Built with React & TypeScript, depart restrictive “no-code” options and write code you’re proud of.

Code-based nature means you can build on top of it to power anything.

Resources

Documentation Examples Templates GitHub Blog

Community

Roadmap Discord Community Help

Payload Cloud

Deploy your entire stack in one place with Payload Cloud.

Login Cloud Pricing

It’s time to take back your content infrastructure.

Schedule a Demo

Enterprise Features

SSO Publishing Workflows Visual Editor Static A/B testing AI features

Customer Stories

Microsoft Blue Origin Hello Bello Mythical Society Tekton

Featured Customer Story

Microsoft chose Payload to tell the world about AI.

Read the case study

New project Login

New project Login

Using the Payload Auth Middleware

Because Payload uses your existing Express server, you are free to add whatever logic you need to your app through endpoints of your own. However, Payload does not add its middleware to your Express app itself—instead, it scopes all of its middleware to Payload-specific routers.

This approach has a ton of benefits - it's great for isolation of concerns and limiting scope, but it also means that your additional routes won't have access to Payload's user authentication.

Example in server.js:

1import express from 'express'
2import payload from 'payload'
3
4const app = express()
5
6const start = async () => {
7  await payload.init({
8    secret: 'PAYLOAD_SECRET_KEY',
9    express: app,
10  })
11
12  const router = express.Router()
13
14  // Note: Payload must be initialized before the `payload.authenticate` middleware can be used
15  router.use(payload.authenticate) 
16
17  router.get('/', (req, res) => {
18    if (req.user) {
19      return res.send(`Authenticated successfully as ${req.user.email}.`)
20    }
21
22    return res.send('Not authenticated')
23  })
24
25  app.use('/some-route-here', router)
26
27  app.listen(3000)
28}
29
30start()

Versions

Star

Chat on Discord

Discord

online