AuthHub is a secure authentication API built with ASP.NET Core 8.
It demonstrates real-world authentication patterns used in production systems.
- JWT Access Token + Refresh Token
- Refresh tokens stored in database
- Token refresh & rotation
- Logout and Logout from all devices
- Email confirmation
- Change / Forgot / Reset password
- Role-based authorization (Admin / User)
- Account lockout (brute-force protection)
- Rate limiting on auth endpoints
- Admin API (user list, role assign, disable user)
- Global exception handling
- Built-in Swagger
- Simple single-file test UI (
index.html)
- .NET 8 (ASP.NET Core Web API)
- Entity Framework Core + SQL Server
- ASP.NET Identity
- JWT Authentication
This project was built to demonstrate backend authentication, security practices, and API design.