Codea Authentication Server — OAuth2/JWT Identity Platform

Summary I designed and built a centralized authentication server providing Google OAuth login, JWT authentication, OAuth2 flows, rate limiting, user management, and detailed auditing — exposed through 36+ well-structured API endpoints.

Problem Each product previously implemented its own authentication logic, creating duplication, inconsistent security, and maintenance overhead.

Solution A unified identity provider handling login, token validation, permissions, rate limiting, and structured logging. Fully documented with Swagger/ReDoc and deployed in a production-ready containerized environment.

Impact Centralized security across all Codea products, faster development cycles, stronger API protection, and a single source of truth for identity and access.

Role Sole developer — architecture, endpoint suite, OAuth/JWT logic, logging, deployment.

Tech Django, DRF, SimpleJWT, OAuth2, Google OAuth, PostgreSQL, Docker, drf-spectacular.