Description
The Easy Auth project is an AWS Cognito authentication library that utilizes the AWS SDK with SRP-based login, aiming to simplify and secure user authentication processes.
Role
Maintainer
Techstack
TypeScript
Vite
Vitest
Features
Library Capabilities
Utilizes the SRP (Secure Remote Password) protocol to ensure secure user logins and protection against unauthorized access.
Seamlessly integrates with AWS Cognito for streamlined user authentication and management workflows.
Provides functionality for user registration, sign-ins, password resets, and managing user attributes effortlessly.
Supports managing and configuring TOTP and SMS-based MFA preferences for added security.
Includes features for retrieving current sessions, signing users out globally or locally, and managing remembered devices.
Offers APIs for user sign-up, confirmation, session retrieval, MFA verification, and user deletion to cover a wide range of use cases.
Allows changing storage providers for managing tokens, including localStorage, in-memory storage, or cookies for flexibility.
Fully tested with robust unit tests to ensure reliable performance across various authentication scenarios.
Setbacks
Obstacles Faced
Integrating the SRP protocol with AWS Cognito required in-depth understanding and meticulous implementation to ensure compatibility and security.
Handling user sessions securely, including token management and session expiration, posed significant challenges during development.
Developing extensive unit tests to cover various authentication scenarios was time-consuming but essential for maintaining code reliability.
Reflections
Insights Gained
Implementing industry-standard security protocols like SRP is crucial for building secure authentication systems.
Proper management of user sessions enhances both security and user experience, highlighting the need for robust session handling mechanisms.
Comprehensive testing is vital in identifying edge cases and ensuring the reliability of authentication processes, reinforcing the importance of thorough test coverage.
Github Page
Github Page
Not Available
Like what you see?
Get in touch
Inspired by ishanipandey