Inspiration
The inspiration behind OmniAuth is to create a comprehensive identity management platform that seamlessly integrates various authentication and verification methods to ensure the security and usability of the platform for both individual consumers (B2C) and business employees (B2B). The goal is to provide a frictionless onboarding experience while prioritizing security and scalability. With the current rise in digital and cyber attacks, there's a need for a decentralized solution, that gives both parties the power to control their identity as well as protect how it is used. That is why we created omniAuth, a decentralized all in one Identity as a service platform, That allows organizations to authorize and authenticate its users, while protecting itself and it's users.
What it does
OmniAuth provides secure authentication and verification processes using technologies like Decope for authentication, Vonage for OTP verification, and RavenDB for user and identity storage. It offers a user-friendly dashboard for users to manage their identities and monitor their usage. Additionally, it enables developers to integrate the platform easily through Gravitee APIs. omniAuth is a decentralized platform, that take security very seriously. By encrypting and protecting users accessing an application, as well as protecting organizations, but preventing unauthrozied or unverified users from accessing an organization site. Wie do this through a double layer encryption as well as stringent verification of users including , phone number, facial recognition and Identity document verification. This in turn allow users to generate a unique id which users can use to dynamically sign into an application, while keeping the user information slightly abstract. This prevents any possibility of users information from being leaked during an attack, as well as prevent an organization from worrying about protecting users information.
How we built it
OmniAuth is built using a combination of technologies and platforms including Decope, Vonage, RavenDB, Convex, Gravitee, Red Hat for deployment, and Codacy for code quality and security analysis. The architecture employs either microservices, monolithic, or both approaches, seamlessly integrated with the Gravitee API Gateway. Security is prioritized through robust authentication and authorization systems. OmniAuth was built with modern technologies including third party integration such as descope for user authentication, vonage for phone number verification as well as red hard and rabid db for securely storing users details. the frontend was built with react, typescript and tailwind and the backend was built with node, typescript
Challenges we ran into
Challenges may include:
Integrating various technologies and platforms seamlessly. Designing a user-friendly and secure onboarding experience for both B2C and B2B users. Ensuring scalability and security throughout the implementation process.
Accomplishments that we're proud of
Key accomplishments include:
Developing a comprehensive identity management solution with seamless integration for developers. Prioritizing security, usability, and scalability in the platform design. Successfully implementing authentication, verification, and identity management features.
What we learned
Through the development of OmniAuth, we learned:
How to integrate various authentication and verification methods effectively. The importance of prioritizing security and scalability in identity management solutions. Techniques for seamless integration of APIs using Gravitee API Gateway.
What's next for OmniAuth
Future enhancements for OmniAuth may include:
Implementing user approval for unique ID usage. Continuously improving security and scalability. Expanding support for additional authentication and verification methods. Enhancing the developer experience through improved API documentation and tooling.
Log in or sign up for Devpost to join the conversation.