RVM.AuthForge
Complete Identity & Access Management platform with OAuth2/OIDC, API Key, 2FA and Blazor admin dashboard.
Overview
RVM.AuthForge is a complete Identity & Access Management (IAM) platform built with ASP.NET Core 10 and OpenIddict 7.4. It works as a centralized authorization server for the entire RVM Tech ecosystem, supporting OAuth2/OIDC flows (Authorization Code + PKCE, Client Credentials, Refresh Token), API Key authentication, two-factor authentication (2FA) with TOTP, comprehensive action auditing and an integrated Blazor Server admin dashboard.
Features
- Complete OAuth2/OIDC server with OpenIddict 7.4 (Authorization Code + PKCE, Client Credentials, Refresh Token)
- User management with registration, login, lockout after 5 attempts, password reset
- Two-factor authentication (2FA) with TOTP, QR Code and 10 recovery codes
- API Keys with SHA256 hash, validation and revocation
- Role-based access control (RBAC) with customizable roles
- Full audit trail with 16 action types, IP, User-Agent and Correlation ID
- Blazor Server admin dashboard with 7 interactive pages
- React SPA Portal support with pre-configured public OAuth2 client
- Rate limiting (10 req/min) on authentication endpoints
Technologies
Patterns & architecture
REST endpoints
| Method | Path | Description |
|---|---|---|
| POST | /api/account/register | User registration |
| POST | /api/account/login | Login |
| POST | /api/account/2fa/setup | Setup 2FA |
| POST | /connect/authorize | OAuth2 Authorization |
| POST | /connect/token | OAuth2 Token Exchange |
| GET | /api/admin/users | List users (Admin) |
| POST | /api/admin/api-keys | Create API Key |