SShortSingh.
TopTechnologyAI & MLStartupsProgrammingScienceBusinessFinanceCrypto & Web3World
Back to feed
Programming

Developer Builds Production-Grade IAM Service Using FastAPI With MFA and Token Security

0
·1 views

A developer has published a detailed writeup on AuthCore, a production-style Identity and Access Management API built with FastAPI, PostgreSQL, Redis, and Celery. The project implements refresh token families, where reuse of an old token triggers full family revocation and an audit event to detect potential session hijacking. Multi-factor authentication is handled via TOTP, requiring a separate short-lived challenge token before full access tokens are issued after login. Security measures include bcrypt password hashing, HaveIBeenPwned breach checking via k-anonymity, Redis-based account lockout, and role-based access control. The project also features a CI pipeline using GitHub Actions with linting, test coverage gates, and Trivy container vulnerability scanning.

Read the full story at DEV Community

This is an AI-generated summary. ShortSingh links to the original source for the complete article.

Discussion (0)

Log in to join the discussion and vote.

Log in

Related stories

0
ProgrammingDEV Community ·

Developer uses DynamoDB sparse GSI to power real-time post scheduler for indie devs

A developer built SlothPost, a social media scheduling tool for indie developers, as part of the H0 Hackathon combining Vercel and AWS databases. The app connects to GitHub, Vercel, and the App Store to capture user activity and auto-draft posts for X and Threads. To handle per-product posting schedules without server-side cron support in DynamoDB, the developer implemented a sparse Global Secondary Index (GSI) that only indexes actively scheduled products. This approach keeps queries efficient by avoiding full table scans, since only items with a scheduleStatus attribute appear in the index. The full application runs on Next.js hosted on Vercel, uses DynamoDB as its primary database, and relies on Cloudflare Workers to trigger the scheduling logic.

0 comments Read more at DEV Community
0
ProgrammingDEV Community ·

How to Break Down Large Instructions into Manageable Datasets for Big Projects

Handling large instruction sets in big projects requires a structured approach to data segmentation. Developers often face challenges when working with extensive datasets that need to be divided into smaller, more manageable chunks. Breaking down instructions into smaller datasets improves processing efficiency and reduces system overhead. This practice is commonly applied in machine learning, data pipelines, and large-scale software development workflows. Adopting modular data handling strategies helps teams maintain clarity, scalability, and better control over complex projects.

0 comments Read more at DEV Community
0
ProgrammingDEV Community ·

How to fix broken Meta ad attribution when conversions happen inside a Telegram bot

When Meta ads drive users to a Telegram bot via a landing page, conversion attribution often breaks silently because the fbclid parameter cannot be passed through Telegram's deep link start payload, which is capped at 64 characters and excludes most special characters. A real fbclid typically exceeds 170 characters, making direct transfer impossible and causing Meta's Conversions API to receive events without the match data needed to tie conversions back to ad clicks. The recommended fix involves generating a short random token on the landing page, storing the full fbclid and click timestamp server-side against that token, and passing only the token through the Telegram deep link. Inside the bot, the token is used to retrieve the original click data and reconstruct a valid fbc value before sending the CAPI event. Developers are also advised to use the original click timestamp rather than the bot-open time, set action_source to 'chat' for accuracy, and apply a short TTL to unused tokens.

0 comments Read more at DEV Community
0
ProgrammingDEV Community ·

Developer Builds Neighborhood Package Hub Platform Using PostGIS and DynamoDB Streams

A developer built Hold·My·Package, a B2B SaaS platform designed to reduce failed last-mile deliveries, as part of the H0: Hack the Zero Stack hackathon with Vercel and AWS. The platform routes undeliverable packages to nearby local businesses — such as dry cleaners or convenience stores — which act as neighborhood hubs and redeliver on the homeowner's schedule. The system uses Aurora PostgreSQL with PostGIS for spatial queries, including finding the nearest hub with available capacity and clustering nearby deliveries into optimized dispatch batches. DynamoDB handles the high-throughput event stream, tracking every package status change and triggering real-time notifications via AWS Lambda and Pusher. The platform serves four user types — hub operators, homeowners, carriers, and network admins — each with dedicated portals built on a Next.js frontend hosted on Vercel.

0 comments Read more at DEV Community
Developer Builds Production-Grade IAM Service Using FastAPI With MFA and Token Security · ShortSingh