Call to action → I partner with startups to ship bullet-proof auth & identity layers.
Hire me → let’s talk →

🩻 Problem

Online products live or die by the security and UX of their login flow.
Off-the-shelf providers are expensive and opaque, while home-grown solutions often skip vital security & observability practices.

🔨 Solution

Identity & Management Service delivers startup-grade authentication, user-management, and influencer-referral tooling as a single FastAPI micro-service.

Architecture Overview

  1. FastAPI Gateway exposes JSON REST + OpenAPI docs.
  2. PostgreSQL (SQLAlchemy + Alembic) persists users, tokens, referrals, and influencer data.
  3. Redis handles OTPs, rate-limiting buckets, and account-lockout timers.
  4. JWT & OAuth2 secure auth flows; Google SSO baked-in.
  5. Prometheus metrics, python-json-logger logs, and OpenTelemetry traces power full-stack observability.
  6. GitHub Actions CI/CD builds, tests, and pushes Docker images on every merge.

Feature Matrix

  • Email/Password signup with OTP verification
  • Google SSO onboarding
  • JWT login with refresh/rotation
  • Secure password reset
  • Profile CRUD & phone-number verification
  • Admin dashboard for user/role lifecycle
  • Influencer application, approval, referral tracking & earnings
  • Rate-limited auth endpoints & account lockout
  • Secure service-to-service endpoints for Payments & Ads micro-services

Sample API Responses

POST /auth/login

{
  "access_token": "eyJhbGciOiJIUzI1NiIs...",
  "refresh_token": "def50200ca2e...",
  "token_type": "bearer",
  "expires_in": 900
}

GET /dashboard/influencer/summary

{
  "signup_code": "COMPANY-X8P7",
  "total_signups": 42,
  "conversions": 17,
  "total_earnings": {
    "amount": "124.00",
    "currency": "USD"
  },
  "pending_payout": {
    "amount": "76.00",
    "currency": "USD"
  }
}

Current Impact

  • ↑ 30 % signup conversion after enabling Google SSO
  • ≤ 50 ms p99 latency for core auth endpoints under load
  • 100 % infra parity between dev & prod via Docker, eliminating “it-works-on-my-machine” bugs
  • Zero critical auth incidents since launch thanks to rate-limit & lockout guards

Roadmap

  • WebAuthn (passkeys) support
  • SCIM provisioning for startup SSO
  • Self-service privacy portal (data export & delete)
  • Kafka event bus for cross-service user-activity streams

Demo

A comprehensive Postman demonstration is currently being prepared. In the meantime, please find below a placeholder as proof of concept:

Luralite identity management service test results – FastAPI JWT authentication and referral dashboard GIF

🚀 Hire Me

Need an authentication nucleus for your next SaaS or mobile app?
Say hello →