Project Details
Distributed Auth
Session invalidation in <100ms using Redis Lua
person Backend architect schedule 2 weeks
What I Built
Designed Redis-backed session system with Lua scripts for atomic cross-node invalidation
Key Outcomes
<100ms Session Invalidation (across all nodes)
Stateless Horizontal Scaling (any node can auth)
Tech Stack
NestJSRedisLuaTypeScriptJest
Project Overview
A learning project exploring production security patterns: atomic token rotation using Redis Lua scripts, multi-device session management, and automatic theft detection. Built to understand secure authentication architecture for real-world applications.
Key Features
security
Atomic Token Rotation
Redis Lua scripts prevent race conditions
devices
Multi-Device Sessions
Per-device session isolation with IP tracking
warning
Theft Detection
Reused tokens trigger automatic session purge
lightbulb
Challenge Solved
Learning to implement secure authentication that handles concurrent refresh requests, token reuse detection, and per-device session isolation.
Key Learnings
- school Redis Lua scripts enable atomic operations without distributed locks