Authentication in web applications, compared to native ones, is particularly sensitive to
security.
It is necessary not only to follow best practices (avoiding password and hash
transmission or storage, using resilient methodologies and algorithms) but also to stay
ahead of the curve by adopting modern and user-friendly technologies, such as FIDO2
The AuthProxy authentication service provides users with the most advanced and in-demand
login methods:
Password-based access key authentication (derived from fintech solutions)
Passwordless authentication using FIDO2 WebAuthn keys (similar to bank client security
keys)
Access with a full ECDSA user key (leveraging blockchain technologies)
Social media login (OAuth 2.0, JWT):
- Telegram (messenger)
- Google (coming soon)
- Apple ID (coming soon)
- Facebook (coming soon)
Support for external service logins in applications via OAuth 2.0 (isolated APIs)
Simple authentication options:
PIN code + OTP code (via email/ SMS/ messenger)
Additional feature:
A straightforward integration of electronic signature schemes for operations using FIDO2
keys and OTP codes into your application.
We have integrated a web server into AuthProxy that considers the specific requirements
of working with content for PWA applications
Unlike conventional web servers, when AuthProxy starts, the entire "site" is loaded
into
RAM. This ensures lightning-fast access to your application and eliminates
limitations
associated with disk-based storage devices.
Caching headers for static application files (scripts, styles, images) are
pre-configured in an optimal way to create an offline experience for users. The
application remains always available (installed and cached) on the client’s device,
even
without an internet connection. The frontend code is loaded only once and is already
in
a precompiled state for the fastest possible subsequent startups, while updates are
handled seamlessly in the background without interrupting the user experience.
The first startup of AuthProxy has been optimized to deliver content to the client
as
quickly as possible. This includes TCP slow start, a startup animation designed with
vector graphics and CSS, packed into the first 3KB of the browser load, and preload
headers configured for styles. Even under extremely slow internet connections, users
will see content immediately while the proxy gateway code (just 180KB) and your
application are being downloaded.
These solutions significantly reduce server and network load while providing users
with a
seamless and highly responsive experience when interacting with your application.
AuthProxy operates as a load-balancing reverse proxy server and serves as an API gateway
(intermediary) for your application’s internet access. It is pre-configured to cache
responses to GET requests using cache headers from your services. AuthProxy can be
deployed in multiple instances across different regions with VPN access to a single
database.
AuthProxy includes a client notification system using SSE (Server-Sent Events) requests,
which eliminates the need for implementing complex schemes like WebSocket.
Incoming request headers from external clients are verified and routed to the
appropriate server within a secure local network. During this process, request headers
are replaced with information about the authenticated user and the results of digital
signature verification, without reading the actual request body.
This approach simplifies the integration process significantly.
AuthProxy isolates and protects your internal services from DDoS attacks and spam,
whether from unauthenticated users or authenticated ones.
Client-side load balancing works as follows:
Each client session maintains a request buffer that tracks the number of seconds
allocated for requests, ranging from 0 to 20.
With each incoming request, the buffer increases by 1, with no upper limit.
Simultaneously, the buffer decreases by 1 per second, but never falls below zero.
This mechanism helps throttle excessively active clients while evenly distributing the
load across servers.
This is just one example of the internal algorithms that help optimize and enhance your
PWA application or service.
AuthProxy helps save both time and costs not only on implementing an authentication
server, web server, and proxy load balancer for your application but also on developing
frontend interfaces for user login, access management, and security. By utilizing our
ready-made templates, you can quickly launch your project, significantly reducing the
time needed to create the foundational application structure.
Instant Integration
The templates are easily embedded into existing projects as standalone pages in a
multi-page application (using multiple React entry points), which accelerates the
process of integrating new features or updates.
Mobile and Desktop Compatibility
The templates are optimized for both mobile devices and desktops, ensuring a consistent
and seamless user experience across all platforms.
Flexibility and Scalability
Our templates are highly customizable to address specific tasks and allow for
application scaling as your project grows. Additionally, they include multi-language
support for broader reach.
This solution is ideal for businesses and developers looking to reduce development time
and quickly launch a high-quality application with minimal effort.
