BuildWithMatija
Get In Touch
  1. Home
  3. Series
  5. Payload CMS Authentication & Security Guide
Payload

Payload CMS Authentication & Security Guide

3 articles
Hub + 2 spokes

Series Overview

Complete authentication and security patterns for Payload CMS: REST API auth, cookie-based sessions, OAuth token refresh, and production security for Next.js applications.

All Articles in Series

H
Mastering Payload CMS API: Authentication & Queries Explained
HUB1 of 3

Mastering Payload CMS API: Authentication & Queries Explained

Unlock the power of Payload CMS with our guide to REST API authentication and efficient data querying techniques.

Learn to securely authenticate and fetch specific data from Payload CMS using REST API in our comprehensive guide.

10 min readNov 5, 2025By Matija Žiberna
1
Payload CMS Cookie Auth: 7 Troubleshooting Secrets for Next.js
PART 12 of 3

Payload CMS Cookie Auth: 7 Troubleshooting Secrets for Next.js

Implement Payload CMS HTTP-only cookie auth with Next.js App Router: CSRF, sessions, CORS, and subdomain cookies.

Secure customer portals with Payload CMS cookie auth and Next.js: setup HTTP-only cookies, CSRF/CORS, sessions, and production fixes to stop silent 401s.

19 min readFeb 19, 2026By Matija Žiberna
2
Persist Google OAuth Refresh Tokens with Next.js & Redis
PART 23 of 3

Persist Google OAuth Refresh Tokens with Next.js & Redis

Step-by-step Next.js guide using Upstash Redis to secure offline Google OAuth refresh tokens and enable background API…

Persist Google OAuth refresh tokens using Next.js and Upstash Redis to preserve refresh_token for offline access — secure background integrations without user…

6 min readDec 21, 2025By Matija Žiberna

Topics Covered

Payload CMSauthenticationcookie authOAuthsession managementNext.js securityAPI authenticationtoken refresh
←Back to all series
HUB ARTICLE

Mastering Payload CMS API: Authentication & Queries Explained

By Matija Žiberna

Quick Navigation

Hub: Mastering Payload CMS API: Authentication & Queries ExplainedPart 1: Payload CMS Cookie Auth: 7 Troubleshooting Secrets for Next.jsPart 2: Persist Google OAuth Refresh Tokens with Next.js & Redis

B2B Website Development

Complex websites for B2B companies whose current site is limiting sales, marketing, and operations.

Learn more

Bespoke AI Applications

Internal tools where AI reduces manual work and connects real business operations.

Learn more

Start a conversation.

Get in touch
Build With Matija Logo

Build with Matija

Matija Žiberna

I turn scattered business knowledge into one usable system. End-to-end system architecture, AI integration, and development.

Quick Links

Projects
  • How I Work
  • Blog
  • RSS Feed

    • Services

    • B2B Website Development
    • Bespoke AI Applications
    • Advisory

    Payload

    • B2B Website Development
    • Payload CMS Developer
    • Audit
    • Migration
    • Pricing
    • Payload vs Sanity
    • Payload vs WordPress
    • Payload vs Strapi
    • Payload vs Contentful

    Industries

    • Manufacturing
    • Construction

    Get in Touch

    Have a project in mind? Let's discuss how we can help your business grow.

    Book a discovery callContact me →
    © 2026BuildWithMatija•Principal-led system architecture•All rights reserved