Convex
Learn how to integrate Clerk into your Convex application
Overview
Convex is a serverless state management platform that makes it easy to store your app's shared state and keep it in sync with automatic subscriptions.
Although Convex does not handle user authentication, you can connect your Convex app with identity providers like Clerk to handle all your authentication and user management needs.
The Clerk integration with Convex works using a JSON Web Token (JWT) created with our JWT Templates feature.
Getting started
Navigate to the JWT Templates screen from the Clerk Dashboard and click on the button to create a New Template based on Convex.
This will pre-populate the default audience (aud) claim required by Convex. You can include additional claims as necessary. Shortcodes are available to make adding dynamic user values easy.
By default, Clerk will sign the JWT with a private key automatically generated for your application, which is what most developers use for Convex. If you so choose, you can customize this key.
Don't forget to click Apply Changes to save your JWT template.
Configure Convex
The next step is to configure Convex with the issuer domain provided by Clerk. From your Clerk JWT template screen, find the Issuer input and click to Copy the URL.
In your terminal, run the following command from your Convex app directory:
npx convex auth add
Paste the Issuer URL you copied when it prompts you for the identity provider's URL.
The application/client ID will need to match the aud claim (default is convex).
? Enter the identity provider's URL: https://<YOUR_CLERK_FRONTEND_API>? Enter your application/client ID with this identity provider: convex? Would you like to add another provider? NoConfiguration updated. Run `npx convex push` to sync these changes with your backend.
Configure the providers
Both Clerk and Convex have Provider components that are required to wrap your React application to provide the authentication and client context.
1import '../styles/globals.css'2import type { AppProps } from 'next/app'3import { ClerkProvider, SignIn, useAuth } from '@clerk/nextjs'4import { ConvexProvider, ConvexReactClient } from 'convex/react'5import clientConfig from '../convex/_generated/clientConfig'6import { ReactElement, ReactNode, useEffect, useState } from 'react'78const convex = new ConvexReactClient(clientConfig)910const ConvexProviderWithClerk = ({11children,12client,13loading,14loggedOut,15}: {16children?: ReactNode17client: any18loading?: ReactElement19loggedOut?: ReactElement20}) => {21const { getToken, isSignedIn, isLoaded } = useAuth()22const [clientAuthed, setClientAuthed] = useState(false)2324useEffect(() => {25async function setAuth() {26const token = await getToken({ template: 'convex', skipCache: true })27if (token) {28client.setAuth(token)29setClientAuthed(true)30}31}32if (isSignedIn) {33const intervalId = setInterval(() => setAuth(), 50000)34setAuth()35return () => {36clearInterval(intervalId)37}38}39}, [client, getToken, isSignedIn])4041if (!isLoaded || (isSignedIn && !clientAuthed)) {42return loading || null43} else if (!isSignedIn) {44return loggedOut || <SignIn />45}4647return <ConvexProvider client={client}>{children}</ConvexProvider>48}4950function MyApp({ Component, pageProps }: AppProps) {51return (52<ClerkProvider>53<ConvexProviderWithClerk client={convex} loading={<div>loading...</div>}>54<Component {...pageProps} />55</ConvexProviderWithClerk>56</ClerkProvider>57)58}5960export default MyApp61
1import type { ReactElement, ReactNode } from 'react';2import { StrictMode, useState, useEffect } from 'react';3import ReactDOM from 'react-dom';4import { ClerkProvider, SignIn, UserButton, useAuth } from '@clerk/clerk-react';5import { ConvexProvider, ConvexReactClient } from 'convex/react';6import clientConfig from '../convex/_generated/clientConfig'7import { ReactElement, ReactNode, useEffect, useState } from 'react'8import App from './App';910const convex = new ConvexReactClient(clientConfig)1112const ConvexProviderWithClerk = ({13children,14client,15loading,16loggedOut17}: {18children?: ReactNode;19client: any;20loading?: ReactElement;21loggedOut?: ReactElement;22}) => {23const { getToken, isSignedIn, isLoaded } = useAuth();24const [clientAuthed, setClientAuthed] = useState(false);2526useEffect(() => {27async function setAuth() {28// Use the name of the JWT template. Default is 'convex'29const token = await getToken({ template: 'convex', skipCache: true });30if(token){31await client.setAuth(token);32setClientAuthed(true);33}34}3536if (isSignedIn) {37const intervalId = setInterval(() => setAuth(), 50000);38setAuth();39return () => {40clearInterval(intervalId);41};42}43}, [client, getToken, isSignedIn]);4445if (!isLoaded || (isSignedIn && !clientAuthed)) {46return loading || null;47} else if (!isSignedIn) {48return loggedOut || <SignIn />;49}5051return <ConvexProvider client={client}>{children}</ConvexProvider>;52};5354ReactDOM.render(55<StrictMode>56<ClerkProvider frontendApi={<REPLACE_WITH_CLERK_FRONTEND_API>}>57<ConvexProviderWithClerk client={convex} loading={<div>Loading...</div>}>58<UserButton />59<App />60</ConvexProviderWithClerk>61</ClerkProvider>62</StrictMode>,63document.getElementById('root')64);65
Access user identity
In some cases you may need to access the user when using Convex queries and mutations, you can use the getUserIdentity() method provided on the auth property, which is passed to the context argument of every Convex function invocation.
convex/getUser.tsimport type { UserIdentity } from 'convex/server';import { query } from './_generated/server';export default query(async ({ auth }): Promise<UserIdentity | null> => {const identity = await auth.getUserIdentity();return identity;});