Self-taught backend engineer focused on authentication systems, API security, and developer tooling. I don't just use Auth,I build the infrastructure behind it and i have fun doing it. I also play PUBG when I feel like relaxing😏

Currently I am:

• Deepening my cryptography knowledge to strengthen the security foundations of Authenik8

• Deepening my understanding of system design and DSAs to build more scalable, production-grade systems

• Extending the Authenik8 ecosystem next milestone: integrating the standalone API into the CLI as an optional preset

Most developers bolt auth on at the end. I built an entire ecosystem around doing it right from the start.

The core library powering the entire ecosystem. An Identity Engine that resolves credentials, OAuth profiles, and future auth strategies into a unified system identity preventing duplicate identities and handling login vs. account-linking flows consistently.

npx create-authenik8-app my-app

Scaffolds a production-ready auth backend in seconds. What you get instantly:

• JWT access + refresh token rotation
• Redis-based token storage
• Role-Based Access Control (RBAC)
• Google & GitHub OAuth via the Identity Engine
• Clean, scalable folder structure
• .env auto-generated

Roadmap: WebAuthn · MFA · Advanced RBAC · Production presets

A standalone, attach-to-any-frontend auth API built for real production workloads.

Features:

• JWT authentication with token bucket rate limiting
• IP whitelisting + dynamic IP expiration
• Redis-backed rate limiting and token management
• Email verification and OTP support
• Role-based access control + admin seeding
• Anonymous guest-mode auth
• Grafana + Prometheus observability out of the box
• Load tested with Artillery
• Fully containerised with Docker Compose

git clone https://github.com/COD434/Authenik8
docker-compose up --build

The Authenik8 ecosystem

Authentication is an identity resolution problem. I build systems that treat it that way.