Glee Authentication
- Mentors
- Souvik De, Nomani
- Organization
- Postman
- Technologies
- typescript, AsyncAPI
- Topics
- web, distributed systems
This project aims to enable many authentication frameworks and add support for an authentication layer to Glee.
This will give developers the ability to use Glee to create secure online applications with a variety of authentication choices. To accommodate future additions of new authentication frameworks, the authentication layer will be created to be modular and adaptable.
After this project, when using Glee to build a server, the developer should be able to specify the authentication strategy they wish to support.
Token-based authentication: This could be done using the jsonwebtoken npm package, provision will be made for both refresh and access tokens. Access tokens will be short-lived tokens, while refresh tokens will have longer life spans and allow for renewal of the access tokens.
Basic authentication: This authentication strategy would be implemented from scratch.
Certificate-based authentication: certificate-based authentication will be implemented from scratch.
OAuth 2.0 authentication: OAuth 2.0 authentication will be achieved using the node-oauth2-server npm package.
Session-based authentication: The viable option here will be to build the session-based authentication from scratch, as many of the options available such as passport-session, express-session, and fastify/session are all framework dependent.