diff --git a/vlib/veb/auth/README.md b/vlib/veb/auth/README.md
new file mode 100644
index 00000000000000..0dbb8219b56ca4
--- /dev/null
+++ b/vlib/veb/auth/README.md
@@ -0,0 +1,94 @@
+## Description
+
+`veb.auth` is a module that helps with common logic required for authentication.
+
+It allows to easily generate hashed and salted passwords and to compare password hashes.
+
+It also handles authentication tokens, including DB table creation and insertion.
+All DBs are supported.
+
+## Usage
+
+
+```v
+import x.vweb
+import db.pg
+import veb.auth
+
+pub struct App {
+	vweb.StaticHandler
+pub mut:
+	db   pg.DB
+	auth auth.Auth[pg.DB] // or auth.Auth[sqlite.DB] etc
+}
+
+const port = 8081
+
+pub struct Context {
+	vweb.Context
+	current_user User
+}
+
+struct User {
+	id            int    @[primary; sql: serial]
+	name          string
+	password_hash string
+	salt          string
+}
+
+fn main() {
+	mut app := &App{
+		db: pg.connect(host: 'localhost', user: 'postgres', password: '', dbname: 'postgres')!
+	}
+	app.auth = auth.new(app.db)
+	vweb.run[App, Context](mut app, port)
+}
+
+@[post]
+pub fn (mut app App) register_user(mut ctx Context, name string, password string) vweb.Result {
+	salt := auth.generate_salt()
+	new_user := User{
+		name: name
+		password_hash: auth.hash_password_with_salt(password, salt)
+		salt: salt
+	}
+	sql app.db {
+		insert new_user into User
+	} or {}
+
+	// Get new user ID (until RETURNING is supported by ORM)
+	if x := app.find_user_by_name(name) {
+		// Generate and insert the token using user ID
+		token := app.auth.add_token(x.id) or { '' }
+		// Authenticate the user by adding the token to the cookies
+		ctx.set_cookie(name: 'token', value: token)
+	}
+
+	return ctx.redirect('/')
+}
+
+@[post]
+pub fn (mut app App) login_post(mut ctx Context, name string, password string) vweb.Result {
+	user := app.find_user_by_name(name) or {
+		ctx.error('Bad credentials')
+		return ctx.redirect('/login')
+	}
+	// Verify user password using veb.auth
+	if !auth.compare_password_with_hash(password, user.salt, user.password_hash) {
+		ctx.error('Bad credentials')
+		return ctx.redirect('/login')
+	}
+	// Find the user token in the Token table
+	token := app.auth.add_token(user.id) or { '' }
+	// Authenticate the user by adding the token to the cookies
+	ctx.set_cookie(name: 'token', value: token)
+	return ctx.redirect('/')
+}
+
+pub fn (mut app App) find_user_by_name(name string) ?User {
+	// ... db query
+	return User{}
+}
+```
+
+