Skip to content

7onetella/users

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

110 Commits

accounts

accounts

 
 

api

api

 
 

assets

assets

 
 

.DS_Store

.DS_Store

 
 

.gitignore

.gitignore

 
 

CREDITS

CREDITS

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

Purpose

There is a need for good secure authentication. This project is a very light implementation of authentication server. Three different types of authentication method have been implemented.

1st Factor 2nd Factor Security
Password None Weak - password can be guessed
Password TOTP Medium - prone to phishing attack
Password WebAuthn Strong

U2F key with WebAuthn protocol improves web security. It is possible to go password-less. However, it will be awhile before mass adoption takes place.

Screen Capture

Live Demo Site

Go to Demo Site

* register your own accounts please

API documentation

Go Here

Future enhancement

  • Add OAuth2 support
  • Add Swagger documentation
  • Add source IP check against previously recorded source IPs
  • Add backoff period when password auth or totp auth fails three times in a row
  • Add browser agent check against previously recorded browser agents

Acknowledgement

About

light authentication server with api endpoint

accounts.7onetella.net/accounts/

Topics

jwt oauth2 openidconnect u2f totp mfa 2fa webauthn fido2 authentication-server

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages