Getting started with Node SDK
Installation
An ES module for the Clerk Node SDK is available under the @clerk/clerk-sdk-node npm package. Use `npm` or `yarn` to install the Clerk Node module.
1npm install @clerk/clerk-sdk-node
1yarn add @clerk/clerk-sdk-node
Set CLERK_SECRET_KEY
The Node SDK will automatically pick the CLERK_SECRET_KEY value from your environment variables. If your application is using .env files, create a file named .env.local in your application root if it doesn't exist already, and add the below variable:
.env1
Make sure you update this variable with the API key found in your Clerk instance dashboard under API Keys
Resource types
The following types are of interest to the integrator:
| Resource | Description |
|---|---|
| Client | unique browser or mobile app |
| Session | a session for a given user on a given client |
| User | a person signed up via Clerk |
| an email message sent to another user | |
| SMS Message | an SMS message sent to another user |
The following types are not directly manipulable but can be passed as params to applicable calls:
| Resource | Description | Usage |
|---|---|---|
| EmailAddress | email address, a user may have a primary & several secondary | email address id can be provided to `emails` sub-api to specify the recipient |
| PhoneNumber | E.164 telephone number, a user may have a primary & several secondary | phone number id can be provided to `smsMessages` sub-api to specify the recipient |
Internal implementation details
This SDK is written in TypeScript.
CJS, ESM, and UMD module builds are provided.
All resource operations are mounted as sub-APIs on a Clerk class and return promises that either resolve with their expected resource types or reject with the error types described below.
The sub-APIs are also importable directly if you don't want to go through the Clerk class.
Available options and ENV vars
The following options are available for you to customize the behaviour of the Clerk class.
Note that most options can also be set as ENV vars so that you don't need to pass anything to the constructor or set it via the available setters.
| Option | Description | Default | ENV variable |
|---|---|---|---|
| secretKey | server key for api.clerk.dev | none | `CLERK_SECRET_KEY` |
| apiVersion | for future use, v1 for now | "v1" | `CLERK_API_VERSION` |
| serverApiURL | for debugging / future use | "https://api.clerk.dev" | `CLERK_API_URL` |
| httpOptions | http client options | {} | N/A |
For every option the resolution is as follows, in order of descending precedence:
- option passed
- ENV var (if applicable)
- default
Another available environment variable is CLERK_LOGGING.
You can set its value to true to enable additional logging that may be of use when debugging an issue.
Singleton
If you are comfortable with setting the CLERK_SECRET_KEY ENV variable and be done with it, the default instance created by the SDK will suffice for your needs.
ESM
import clerk from '@clerk/clerk-sdk-node';const userList = await clerk.users.getUserList();
Or if you are interested only in a certain resource:
import { sessions } from '@clerk/clerk-sdk-node';const sessionList = await sessions.getSessionList();
CJS
const pkg = require('@clerk/clerk-sdk-node');const clerk = pkg.default;clerk.emails.createEmail({ fromEmailName, subject, body, emailAddressId }).then((email) => console.log(email)).catch((error) => console.error(error));
Or if you prefer a resource sub-api directly:
const pkg = require('@clerk/clerk-sdk-node');const { clients } = pkg;clients.getClient(clientId).then((client) => console.log(client)).catch((error) => console.error(error));
Setters
The following setters are available for you to change the options even after you've obtained a handle on a Clerk or sub-api instance:
If you have a clerk handle:
clerk.secretKey = value;clerk.serverApiUrl = value;clerk.apiVersion = value;clerk.httpOptions = value;
If are using a sub-api handle and wish to change options on the (implicit) singleton Clerk instance:
setClerkSecretKey(value)setClerkServerApiUrl(value)setClerkApiVersion(value)setClerkHttpOptions(value)
Custom instantiation
ESM
import Clerk from '@clerk/clerk-sdk-node/esm/instance';const clerk = new Clerk({ secretKey: 'secret_key' });const clientList = await clerk.clients.getClientList();
CJS
const Clerk = require('@clerk/clerk-sdk-node/cjs/instance').default;const clerk = new Clerk({ secretKey: 'secret_key' });clerk.smsMessages.createSMSMessage({ message, phoneNumberId }).then((smsMessage) => console.log(smsMessage)).catch((error) => console.error(error));
Multi-session applications
If Clerk is running in multi-session mode, it's important to ensure your frontend sends the Session ID that is making the request.
Our middleware will look for a query string parameter named _clerk_session_id. If this parameter is not found, the middleware will instead choose the last active session, which may be subject to race conditions and should not be relied on for authenticating actions.
Connect/Express middlewares
The Clerk Node SDK offers two middlewares to authenticate your backend endpoints.
Manual authentication
Authenticate a particular session
1import { sessions } from '@clerk/clerk-sdk-node';2import Cookies from 'cookies';34// Retrieve the particular session ID from a5// query string parameter6const sessionId = req.query._clerk_session_id;78// Note: Clerk stores the clientToken in a cookie9// named "__session" for Firebase compatibility10const cookies = new Cookies(req, res);11const clientToken = cookies.get('__session');1213const session = await sessions.verifySession(sessionId, clientToken);
Authenticate the last active session
Using the last active session is appropriate when determining the user after a navigation.
1import { clients, sessions } from '@clerk/clerk-sdk-node';23// Note: Clerk stores the clientToken in a cookie4// named "__session" for Firebase compatibility5const cookies = new Cookies(req, res);6const clientToken = cookies.get('__session');78const client = await clients.verifyClient(sessionToken);9const sessionId = client.lastActiveSessionId;1011const session = await sessions.verifySession(sessionId, clientToken);