Skip to content

7onetella/users

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

110 Commits
accounts
accounts
 
 
api
api
 
 
assets
assets
 
 
.DS_Store
.DS_Store
 
 
.gitignore
.gitignore
 
 
CREDITS
CREDITS
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Purpose

There is a need for good secure authentication. This project is a very light implementation of authentication server. Three different types of authentication method have been implemented.

1st Factor 2nd Factor Security
Password None Weak - password can be guessed
Password TOTP Medium - prone to phishing attack
Password WebAuthn Strong

U2F key with WebAuthn protocol improves web security. It is possible to go password-less. However, it will be awhile before mass adoption takes place.

Screen Capture

Live Demo Site

Go to Demo Site

* register your own accounts please

API documentation

Go Here

Future enhancement

  • Add OAuth2 support
  • Add Swagger documentation
  • Add source IP check against previously recorded source IPs
  • Add backoff period when password auth or totp auth fails three times in a row
  • Add browser agent check against previously recorded browser agents

Acknowledgement

About

light authentication server with api endpoint

accounts.7onetella.net/accounts/

Topics

jwt oauth2 openidconnect u2f totp mfa 2fa webauthn fido2 authentication-server

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages