Security and Login
Start here for security-aware workflows in Wappler: session context, login-related server logic, and safe state handling.
Security and Login
Section titled “Security and Login”Use this page as the security-oriented map through Wappler. Start with the shared Security Provider setup, then continue into the working login flow, the App Root page-restrict inspector, and finally the session-aware server actions that enforce access.
The goal is to help beginners separate provider setup, sign-in flow, page access, and protected server logic before they build larger authentication systems.
Security and login
Section titled “Security and login”Start with provider setup, then follow the same identity through login, page restriction, and secure server flows.
Start here
Setting up Site Security Settings
Understand Wappler Security Providers, provider types, and the shared settings that power login and access control across a project.
Login: Create a Working User Login Page
See the real Demo Projects HQ login flow, from the page form to the shared Security Provider.
Security: Restricting Access to Your Page
Use the App Root security properties to understand shared layout protection, page-specific access rules, and the inspector fields that control login and permission redirects.
Security Provider fundamentals
See how Security Providers drive login sessions, action restrictions, and protected page flows across a Wappler project.
Complete account flows
Register and Auto Login
Plan a registration flow in Wappler that creates the account, starts the session, and hands the user into the app cleanly.
Logout Button and Session Exit
Build a predictable logout flow in Wappler so sessions end cleanly and protected areas become inaccessible immediately.
Role-Based Redirects After Login
Use provider permissions and route decisions to send different Wappler users to the right post-login destination.
Logged-In User Context
Use session-backed identity in Wappler pages and actions so the app can show the current user safely and consistently.
Password Reset: Request and Token Flow
Plan the first half of a Wappler password-reset flow: request handling, token generation, and safe handoff into reset links.
Password Reset: Update and Re-entry
Complete the Wappler password-reset flow by validating the token, storing the new password safely, and guiding the user back into login.
Google OAuth Login
Understand how Google OAuth fits into Wappler security flows, from provider setup to callback handling and protected routes.
Server-side enforcement and context
Secure Server-Side Data
Learn how Wappler protects server actions with shared providers, session context, and permission-aware enforcement.
Using Globals in Server Connect
Use Globals in Server Connect to manage shared project settings such as database connections, security providers, mailer settings, and other reusable server-side configuration.
Server Connect Actions: Session & Cookie inputs
Understand session vs cookie data, how they relate to login/auth, and how to use them as inputs in actions.
Demo walkthrough: User update (routing + session + security)
Use the real users/update.json action in Demo Projects HQ to connect route params, session context, permissions, and a secure database update.
Go to
API and JSON
Start here for data exchange concepts in Wappler: server-side actions, client-side bindings, and your first dynamic data flow.
How-To Guides
Browse practical how-to entry points across Wappler so you can jump straight into guided task-based learning.
Wappler Docs Index
Browse Wappler tours by topic and jump into areas like Why Wappler, Learning the Basics, and Wappler's UI.