Auth API Service

Node.jsTypeScriptJWTRBACPostgreSQLPrisma

Problem

Multiple independent applications needed unified authentication and authorization. Each app had its own login logic — no central user management, no consistent permission model, no single sign-on.

Approach

Self-designed RESTful auth service with Node.js and TypeScript. JWT token flow with access and refresh token rotation, role-based access control (RBAC) with fine-grained permissions, PostgreSQL with Prisma ORM. Clean API documentation and error handling.

Result

Production-ready auth service centrally serving multiple applications. Use cases defined, data model designed, access concepts developed and implemented — completely independently from concept to deployment.