Project Overview
"Secure, passwordless authentication for the modern web."
Access acts as a Single Sign-On (SSO) provider that manages user registration, authentication, and data synchronization across the Emirates WebFusion ecosystem. It supports multi-tenant authentication for personal and business accounts, featuring WebAuthn/FIDO2 passkeys for a seamless biometric login experience without traditional passwords.
Single Sign-On
Centralized login for all satellite applications with origin-based redirects.
Passkey Support
Phishing-resistant biometric authentication using WebAuthn/FIDO2 standards.
Data Synchronization
Automatic user data sync to satellite applications via fire-and-forget integration.
Advanced Security
JWT tokens, HTTP-only cookies, and time-limited password reset tokens.
System Architecture
A distributed system designed for scalability and high security across multiple domains.
Frontend Layer
Static-exported portal with dark mode and real-time form validation.
Backend API
Secure REST API with cross-domain cookie and token support.
Database Layer
Scalable NoSQL storage for multi-tenant users and credentials.
Core Functionalities
Passkey Login
Biometric authentication (FaceID, TouchID, Windows Hello) for enhanced security.
Multi-tenant Auth
Separate registration and login flows for Personal and Business users.
Satellite Sync
Parallel background synchronization of user data to connected applications.
Secure Reset
Time-limited (15 mins) token-based password recovery with automatic cleanup.
Origin Tracking
Seamless return to originating apps with secure token transmission.
Responsive UX
Beautifully designed mobile-first UI with dark/light mode persistence.
Security Protocols
Bcrypt hashing (10 rounds), HTTP-only cookies, and CSRF protection.