Skip to content

fayedraza/authentication-service

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

139 Commits
.github/workflows
.github/workflows
 
 
agents/baml_src
agents/baml_src
 
 
auth_platform
auth_platform
 
 
dagger
dagger
 
 
dev-portal-ui
dev-portal-ui
 
 
mcp_server
mcp_server
 
 
results
results
 
 
.gitignore
.gitignore
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
.pylintrc
.pylintrc
 
 
.secrets.baseline
.secrets.baseline
 
 
COMPLETE_TESTING_GUIDE.md
COMPLETE_TESTING_GUIDE.md
 
 
DEVELOP_SDK_GUIDE.md
DEVELOP_SDK_GUIDE.md
 
 
README.md
README.md
 
 
TESTING-GUIDE.md
TESTING-GUIDE.md
 
 
complete-insomnia-collection.json
complete-insomnia-collection.json
 
 
dagger.json
dagger.json
 
 
docker-compose.yml
docker-compose.yml
 
 
mcp_debugger.py
mcp_debugger.py
 
 
run_all_tests.sh
run_all_tests.sh
 
 
test_client.py
test_client.py
 
 
test_fraud_detection.sh
test_fraud_detection.sh
 
 

Repository files navigation

Authentication Service

Note

This service has not been deployed yet. It is currently configured for local development and testing.

This repository contains a full-stack authentication and fraud detection system composed of several microservices coordinated via Docker Compose.

Services Layout

  • auth_platform/ — FastAPI authentication service (JWT, user register/login, 2FA).
  • dev-portal-ui/ — React-based developer portal UI that integrates with the auth API.
  • mcp_server/ — Model Context Protocol (MCP) server for enhanced fraud detection and AI-powered analysis.
  • agents/ — BAML-based AI agent definitions used by the MCP server for intelligent fraud assessment.
  • dagger/ — Ported fraud simulation and CI pipelines using Dagger.

Architecture

graph TD
    User((User))
    subgraph "Application to call API"
        UI["UI/Application"]
    end
    subgraph "Backend Services"
        Auth["Auth Platform API"]
        subgraph "MCP Server"
            Logic[Fraud Logic]
            Rules["Rules Engine"]
        end
    end
    subgraph "AI Intelligence"
        Agents["BAML Agents"]
    end

    User -->|Browser| UI
    UI <-->|HTTP/JSON| Auth
    Auth -- Events --> Logic
    Logic -->|Dev / Fallback| Rules
    Logic -.->|Prod / AI Enabled| Agents
Loading

Getting Started (Local Development)

The easiest way to run the entire stack is using Docker Compose.

Prerequisites

  • Docker Desktop (v2 recommended)
  • (Optional) Poetry and Python 3.12 for local backend development
  • (Optional) Node.js for local frontend development

Quick Start

From the repository root:

docker compose up -d --build

Services will be available at:

Manual Setup (Without Docker)

1. Backend (Poetry)

cd auth_platform
poetry install
poetry run uvicorn auth_platform.auth_service.main:app --reload --host 0.0.0.0 --port 8000

2. Frontend (React)

cd dev-portal-ui
npm ci
npm start

Features

Two-Factor Authentication (TOTP)

  • Backend: Enroll via /2fa/enroll, verify via /2fa/verify. Protects logins with 6-digit codes.
  • Frontend: Integrated QR code rendering and verification flow on the account page.

AI-Powered Fraud Detection

  • MCP Server: Intercepts events to perform real-time fraud analysis.
  • BAML Agents: Uses specialized AI agents to evaluate login patterns and risk factors with detailed reasoning.

CI/CD Pipelines

The project uses GitHub Actions for continuous integration and Dagger for portable fraud simulation pipelines.

graph TD
    subgraph "CI Workflow (ci.yml)"
        Push[Push to Branch] --> Lint[Lint & Security]
        Lint --> Unit[Unit Tests]
        Unit --> Integration[Integration Tests]
        Integration --> E2E[End-to-End Tests]
        E2E --> Build[Docker Build Check]
    end

    subgraph "Fraud Simulation"
        SimTrigger[Commit / Dispatch] --> Dagger[Dagger Pipeline]
        Dagger --> SimRun[Run Simulation]
        SimRun --> AIAnalysis[AI Agent Analysis]
        AIAnalysis --> PR[Create Report PR]
    end
Loading

Tech Stack & Tools

  • Backend: Python 3.10+, FastAPI, SQLAlchemy, Poetry, FastMCP (to be added)
  • Frontend: React
  • AI & ML:
    • BAML (Boundaryless AI Markup Language)
    • MCP (Model Context Protocol)
    • Gemini / Groq Llama (LLM Providers)
  • Infrastructure: Docker, GitHub Actions, Dagger
  • Quality & Security: Pytest, Pylint

Testing

Backend Tests

cd auth_platform
poetry run pytest

Frontend Tests

cd dev-portal-ui
npm test -- --watchAll=false

Integration Tests

Run the comprehensive test suite:

./run_all_tests.sh

MCP Debugging

A dedicated debugging tool is provided to inspect the MCP server's database (mcp.db) and verify integration.

Quick Debugging

Use the CLI debugger to inspect database stats and recent events:

# Verify connection and list tools
python test_client.py

Database Debugger Server

The mcp_debugger.py script runs a standalone MCP server for database inspection:

# Run the debugger server manually
python mcp_debugger.py

Key Features:

  • get_database_stats: View total events, alerts, and risk metrics.
  • get_recent_events: Fetch the latest authentication logs.

Tooling & Security

  • Pre-commit: Configured for linting (Pylint) and secret scanning.
  • Secret Scanning: Uses detect-secrets. Update baseline with: 
    detect-secrets scan --all-files > .secrets.baseline
  • CI/CD: GitHub Actions (.github/workflows/ci.yml) automate testing and security checks.

Documentation

About

Authentication service with rules/LLM to determine suspicious login activity

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages