Releases: Madhur-Prakash/Auth
Releases · Madhur-Prakash/Auth
v1.2.0
Authentication Service – v1.2.0
Date - 2025-10-10
🚀 What's New in v1.2.0
🛡️ Enhanced Security
- Implemented XSS (Cross-Site Scripting) protection using input sanitization utilities across request-handling layers.
- Strengthened validation functions to prevent malicious input attacks and ensure safe user data handling.
- Hardened cookie and session configurations for stricter compliance with secure cookie policies.
⚙️ Improved Error Handling
- Centralized and standardized exception handling with consistent HTTP error responses.
- Introduced detailed validation messages to enhance debugging and API reliability.
- Replaced generic errors with structured error models for better client-side interpretation.
🧹 Code Quality Improvements
- Removed unnecessary imports and redundant logic across modules for cleaner code.
- Ensured PEP8 compliance and improved readability across the codebase.
- Enhanced modularity and maintainability by refactoring configuration and validation utilities.
🔐 Security & Stability
- Conducted a full review of the authentication and token handling logic to ensure no security leaks.
- Validated secure cookie, CORS, and session management configurations for production readiness.
Note:
- This release marks a significant step toward achieving a more secure, stable, and production-ready authentication system.
- The improvements in security, error handling, and code quality make the service more resilient, developer-friendly, and future-proof for upcoming integrations.
v1.1.0
🐳 v1.1.0 – Full Docker Support
Date: 2025-08-17
🚀 Key Highlights
- Full Dockerization: The authentication service can now run entirely in containers with minimal setup. Dependencies like Redis, Kafka, and MongoDB are orchestrated via
docker-compose. - Environment Flexibility: Easily switch between
localanddockerconfigurations using environment variables. - Persistent Storage: MongoDB volumes ensure data persists across container restarts.
- Automated Setup: Dependencies are installed and built automatically inside Docker for consistent and reliable environments.
🔧 Improvements
- Restructured project folder layout for containerized workflows, making the codebase cleaner and more maintainable.
- Adjusted service ports and Docker network bindings to avoid conflicts with local host services.
- Centralized configuration via
.envfiles to reduce hardcoding and improve environment management.
🐛 Bug Fixes
- Resolved Kafka connection timeout issues by adding a startup wait script to ensure all dependent services are ready before launch.
📦 Upgrade Instructions
- Pull the latest changes from the repository.
- Update your
.envfile with Docker-compatible settings. - Run the service:
docker-compose up --buildNote:
- This release significantly improves deployability, scalability, and reliability.
- Developers should now rely on the Docker workflow for setup, testing, and deployment.
v1.0.2
📦 Release v1.0.2 – Documentation Improvements
Date: 2025-08-11
🔄 Changed
- Enhanced Readme for better instructions.
📜 Impact
This update significantly improves onboarding for developers.
v1.0.1
📦 Release v1.0.1 – Documentation & Setup Improvements
Date: 2025-08-10
🔄 Changed
- Enhanced guidance for setting up environment variables in the
.envfile.
📜 Impact
This update significantly improves onboarding for developers by:
- Reducing environment configuration errors.
v1.0.0
🚀 Initial Release – v1.0.0
Date: 2025-07-07
This is the first stable release of the Auth microservice, built with FastAPI and designed for secure, scalable authentication using modern practices like JWT, Google Sign-In, Redis caching, Kafka, Celery, and email-based OTP verification.
🛠️ Tech Stack
- FastAPI + Pydantic
- MongoDB for user storage
- Redis for OTP & rate limiting
- Kafka for event-based communication
- Celery + Mailhog for async mail tasks
- JWT and Google OAuth2 authentication
- Docker and Docker Compose for containerization
✨ Features
- JWT-based login & session management
- Google Sign-In with OAuth2
- Email-based OTP verification
- Redis-backed Bloom Filter & rate limiting
- Kafka-based event producers & consumers
- Celery workers with background email support
- Full HTML UI for auth flows
- Load testing with Locust
✅ Status
This release is stable and ready for development use in microservice architectures.