Secure Auth Lab

Enterprise-grade authentication service with security research components.

About This Lab

Production-ready authentication service with embedded security test cases. Demonstrates secure implementations while providing controlled environments for security research.

Security Features

RSA-256 signed JWTs
Argon2id password hashing
Hardware-backed MFA
Adaptive rate limiting
Anomaly detection
Session binding

Research Components

// Configurable security controls for research
type SecurityControls struct {
    TokenSigningMethod jwt.SigningMethod
    PasswordHashCost   int
    MFARequired       bool
    RateLimitBypass   bool  // Research only
}

Architecture

Go 1.21+ (Core service)
PostgreSQL (User store)
Redis (Session management)
Kubernetes (Orchestration)
Prometheus (Security metrics)

Security Modes

# Production mode (All security controls)
make run-secure

# Research mode (Configurable controls)
make run-research

# Local development
make run-dev

Name		Name	Last commit message	Last commit date
Latest commit History 15 Commits
api		api
cmd/auth		cmd/auth
configs		configs
db		db
deployments		deployments
docs		docs
DockerFile		DockerFile
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Secure Auth Lab

About This Lab

Security Features

Research Components

Architecture

Security Modes

About

Uh oh!

Releases

Packages

Languages

lorenzoporto/secure-auth-service

Folders and files

Latest commit

History

Repository files navigation

Secure Auth Lab

About This Lab

Security Features

Research Components

Architecture

Security Modes

About

Topics

Resources

Security policy

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages