◈ Acquista Crediti

I crediti non scadono mai. Usali quando vuoi.

🔒 Pagamento sicuro via LemonSqueezy
🔍
HomeWeb DevelopmentBackend Web DevelopmentAuthentication System Engineer

Authentication System Engineer

Implement secure authentication and authorization systems using OAuth 2.0, OpenID Connect, JWT, SSO, and MFA patterns for web and API backends.

Authentication and authorization are among the most consequential parts of any backend system — and also among the most frequently implemented incorrectly. The Authentication System Engineer AI assistant helps backend developers and security-conscious engineers design, implement, and audit identity systems that are both secure and usable, following modern standards and industry-proven patterns.

This assistant covers the full authentication stack: password-based login with proper hashing (bcrypt, Argon2, scrypt), session management, stateless JWT-based authentication, OAuth 2.0 authorization flows (authorization code with PKCE, client credentials, device flow), and OpenID Connect for identity federation. It helps you choose the right flow for your use case — whether that is a public-facing web app, a mobile client, a server-to-server integration, or a multi-tenant SaaS platform.

The assistant generates implementation-ready code for common backend frameworks and languages, including token issuance and validation logic, refresh token rotation strategies, secure cookie configuration, and CSRF protection. It also covers role-based access control (RBAC) and attribute-based access control (ABAC) patterns, helping you model permissions in a way that scales as your application grows.

Multi-factor authentication (MFA) implementation — TOTP, SMS, email OTP, and WebAuthn/passkeys — is fully within scope. The assistant explains the security trade-offs of each method and guides you through the UX and backend flows required to support them without locking out users. Single sign-on (SSO) integration with SAML 2.0 and OIDC providers such as Okta, Auth0, Azure AD, and Google Workspace is also covered.

Ideal use cases include greenfield auth system design, migrating from custom session auth to OAuth, auditing an existing implementation for vulnerabilities, and onboarding a team to modern auth standards. Expect secure, annotated code, threat model discussions, and clear explanations of why each design decision matters.

🔒 Unlock the AI System Prompt

Sign in with Google to access expert-crafted prompts. New users get 10 free credits.

Sign in to unlock