Simple solution
to a complex issue
PWA solution
Designed for maximum security and performance of PWA applications
Currently, PWA applications are the
best
solution for businesses on the
market. They are taking over the world, and we provide ready-made,
well-
developed solutions tailored for PWA, using cutting-edge technological
approaches. Auth Proxy is
a technology at the
intersection of web,
cryptography, and authentication.
Authentication in web applications, compared to native ones, is particularly sensitive to security.
It is necessary not only to follow best practices (avoiding password and hash transmission or storage, using resilient methodologies and algorithms) but also to stay ahead of the curve by adopting modern and user-friendly technologies, such as FIDO2.
The AuthProxy authentication service provides users with the most advanced and in-demand login methods:
Password-based access key authentication (derived from fintech solutions)
Passwordless authentication using FIDO2 WebAuthn keys (similar to bank client security keys)
Access with a full ECDSA user key (leveraging blockchain technologies)
Social media login (OAuth 2.0, JWT):
Support for external service logins in applications via OAuth 2.0 (isolated APIs)
Simple authentication options: PIN code + OTP code (via email/ SMS/ messenger)
Additional feature: A straightforward integration of electronic signature schemes for operations using FIDO2 keys and OTP codes into your application.
We have integrated a web server into AuthProxy that considers the specific
requirements of working
with
content for PWA applications
Unlike conventional web servers, when AuthProxy starts, the entire "site" is loaded
into RAM. This
ensures
lightning-fast access to your application and eliminates
limitations associated with disk-based
storage
devices.
Caching headers for static application files (scripts, styles, images) are pre-
configured in an
optimal
way to create an offline experience for users. The
application remains always available (installed
and
cached) on the client’s device,
even without an internet connection. The frontend code is loaded only
once
and is
already in a precompiled state for the fastest possible subsequent startups, while
updates
are
handled seamlessly in the background without interrupting the user
experience.
The first startup of AuthProxy has been optimized to deliver content to the client as quickly as
possible. This includes TCP slow start, a startup animation designed with
vector graphics and CSS,
packed
into the first 3KB of the browser load, and preload
headers configured for styles. Even under
extremely
slow internet connections,
users will see content immediately while the proxy gateway code (just
180KB)
and
your application are being downloaded.
These solutions significantly reduce server and network load while providing users
with a seamless
and
highly responsive experience when interacting with your
application.
APG
APG
AuthProxy isolates and protects your internal services from DDoS attacks and spam, whether from
unauthenticated users or
authenticated ones.
Client-side load balancing works as follows:
Each client session maintains a request buffer that tracks the number of seconds allocated for requests,
ranging from 0 to 20.
With each incoming request, the buffer increases by 1,
with no upper
limit.
Simultaneously, the buffer decreases by 1 per
second, but never falls below zero. This mechanism
helps
throttle excessively active clients while evenly distributing the load
across servers. This is just
one
example of the internal algorithms that help optimize and enhance your PWA application or
service.
AuthProxy helps save both time and costs not only on implementing an authentication server, web server,
and proxy load
balancer for your application but also on developing frontend interfaces for user
login,
access management, and security. By
utilizing our ready-made templates, you can quickly launch your
project, significantly reducing the time needed to create the
foundational application structure.
Instant Integration The templates are easily embedded into existing projects as standalone pages in a
multi-page application
(using multiple React entry points), which accelerates the process of
integrating
new features or updates.
Mobile and Desktop Compatibility The templates are optimized for both mobile devices and desktops,
ensuring a consistent
and seamless user experience across all platforms.
Flexibility and Scalability Our templates are highly customizable to address specific tasks and allow for
application scaling as
your project grows. Additionally, they include multi-language support for
broader
reach.
This solution is ideal for businesses and developers looking to reduce development time and quickly
launch a high-quality
application with minimal effort.
APG
Features
Authproxy is designed to solve several common problems in the area of information security, quality of access to digital services and scalability of solutions within the HTTP protocol, namely deployment of PWA applications.
FIDO2, USER keys
User authentication based on digital signatures. Login from Telegram.
Verification
Verification of critical transactions using FIDO2 digital signature (e.g.
withdrawal of funds).
Device logging
Device logging and user geolocation. Built-in system notification service
(SSE).
API access balance
Control, restriction and balancing between users access to API services.
Caching of necessary
API
requests.
API Security
Provides protection against common vulnerabilities such as CSRF, XSS,
DDOS, brute-force
attacks,
and spam. It includes request origin
verification to prevent data forgery attempts or hacking
through header
manipulation.
WEB Security
We use secure cookie settings HttpOnly, Secure to protect your data and
prevent unauthorised
access in your web browser.
We control access to resources from other sites CORS (Cross-Origin
Resource Sharing), CSP
(Content-Security-Policy), which protects against
cross-site attacks and provides secure
interaction with external services.
WEB server for PWA
High-performance Web server for PWA applications (memory cache),
compression of static
content.
Optimal сaching headers.
Reliability
Performance scaling and fault tolerance.
Minimal size and fast loading.
Full control: self-hosted best for security and GDPR, HIPAA, PCI DSS
standarts.
Who is our solution for?
For developers and CTO
Quickly implement secure authentication in projects. Open API and flexible settings for customization.
Startups
Turnkey solution for standard security features, minimal support costs.
Business
Transition/adding modern solutions
in the field of authentication of
mobile
applications that support dependence on
external SaaS and services.
Pricing
Choose your future
Our frontend
Our products
Find out more
Find out more
Registration
01
Registration on the site
02
Project creation, domain registration
03
Building software for a domain
04
Download
05
Use