Zero-Trust Auth System.

A security-first Identity Provider (IdP) built from scratch to replace legacy auth services. It implements a zero-trust architecture where every request is authenticated and authorized against dynamic policies, utilizing Redis for immediate global session revocation.

Mitigating race conditions in refresh token rotation to prevent replay attacks. I utilized Redis Lua scripts to atomically validate and swap token families, ensuring that any detected token reuse immediately invalidates the entire chain and alerts the security operation center.