Quickstart

The @c15t/backend package gives you a fully self-hosted consent management API. It handles consent storage, geo-location, audit logging, and policy management — all on your own infrastructure.

The backend exposes a standard (request: Request) => Promise<Response> handler, so it works with any JavaScript runtime (Node.js, Bun, Deno, Cloudflare Workers) and any HTTP framework.

If you want a fully managed experience we recommend using inth.com.

Installation

npm install @c15t/backend

Basic Setup

Create a c15t instance

import { c15tInstance } from '@c15t/backend';
import { kyselyAdapter } from '@c15t/backend/db/adapters/kysely';
import { db } from './db'; // your Kysely instance

export const c15t = c15tInstance({
  appName: 'my-app',
  basePath: '/api/c15t',
  trustedOrigins: ['https://example.com'],
  adapter: kyselyAdapter(db),
});

The trustedOrigins array controls CORS — list every domain that will send requests to the API.

Mount the handler

The c15t.handler accepts a standard Fetch API Request and returns a Response. Mount it in your framework of choice:

// Bun
import { c15t } from './c15t';

Bun.serve({
  port: 3001,
  fetch: c15t.handler,
});

// Next.js App Router
import { c15t } from '@/lib/c15t';

const handler = c15t.handler;

export {
  handler as GET,
  handler as POST,
  handler as PUT,
  handler as PATCH,
  handler as DELETE,
};

// Cloudflare Workers
import { c15t } from './c15t';

export default {
  async fetch(request: Request) {
    return c15t.handler(request);
  },
};

See Framework Integration for more examples.

Run database migrations

Before the backend can store consent records, your database needs the required tables.

The easiest way to migrate your database is via the c15t cli:

npx @c15t/cli

See Database Setup for adapter-specific migration guides. If you plan to use policy packs with runtime audit storage, also apply the runtime policy decision migration from the Policy Packs guide.

Point your frontend at the backend

Update your frontend consent manager to use your self-hosted URL:

<ConsentManagerProvider
  options={{
    mode: 'hosted',
    backendURL: 'https://example.com/api/c15t',
    consentCategories: ['necessary', 'measurement', 'marketing'],
  }}
>

Verify it works

Open https://example.com/api/c15t/status in your browser. You should see a JSON response with the server version and your client info:

{
  "version": "1.8.0",
  "timestamp": "2026-02-11T12:00:00.000Z",
  "client": {
    "ip": "192.168.1.0",
    "acceptLanguage": "en-US",
    "userAgent": "Mozilla/5.0 ...",
    "region": { "countryCode": "US", "regionCode": "CA" }
  }
}

Info

The backend includes auto-generated API documentation. Visit {basePath}/docs (e.g. /api/c15t/docs) to explore all endpoints interactively.

Optional: AI Agents

Install c15t agent skills to let AI agents help with styling, i18n, scripts & other configuration.

npx @c15t/cli skills

See AI Agents for bundled package docs and agent skills.

Next Steps

Database Setup

Configure Prisma, Drizzle, Kysely, TypeORM, or MongoDB as your storage adapter.

Framework Integration

Mount the backend in Next.js, Bun, Express, Hono, Fastify, or Cloudflare Workers.

Caching

Add Redis or Cloudflare KV caching for production performance.

API Endpoints

Full reference for every consent API endpoint.