LogoDocsHub
Riavzon Ecosystem

Distributed Authentication & Security

Drop-in authentication for Nuxt, Nitro, and H3. IAM service, BFF gateway, and bot detection — all wired together.
Get startedGitHub
protect.ts
export default defineAuthenticatedEventHandler((async) => {
    const { userId } = event.context.authorizedData;
    // Do authenticated stuff
})

Build with trusted tools

Ecosystem Capabilities

Discover the powerful features that make up the Riavzon security and authentication infrastructure.
Centralized Identity Management
Complete signup, login, and comprehensive user session management providing a robust single source of truth for your applications.
Advanced Bot Defense
Multi-layered traffic analysis that intelligently identifies and blocks sophisticated scrapers while permitting known search engines.
Robust Token Architecture
Enterprise-grade JWT security utilizing long-lived hashed refresh tokens alongside fast, stateless, short-lived access tokens.
Passwordless Auth & MFA
Enhance user security and experience with built-in support for secure magic links and email-based Multi-Factor Authentication.
Dynamic Traffic Filtering
Protect downstream endpoints with granular IP validation, deep GeoIP tracking, proxy detection, and customizable penalty scoring.
Seamless OAuth
Pre-configured third-party authentication flows that synchronize natively and effortlessly with your core user database.
Persistent Rate Limiting
Mitigate brute-force attacks via comprehensive multi-tiered burst and sustained rate limiting, backed securely by MySQL.
Native Framework Support
Drop-in caching, routing, middlewares, and strict utilities designed specifically to integrate with Nuxt, Nitro, and Express.
HMAC Request Sealing
Ensure total integrity and authenticity of server-to-server requests originating from the edge gateway using HMAC-SHA256 signatures.
Mutual TLS (mTLS)
Enforce rigorous enterprise security standards by requiring bi-directional cryptographic identity validation for internal network traffic.

Explore Core Modules

The Riavzon ecosystem provides a comprehensive suite of security and utility modules to help you build robust web applications.
    Start Here

    Getting Started

    An introduction to help you understand the core components.

    Read Docs
    Core

    Auth H3 Client

    Seamlessly enforce OAuth 2.0 authentication and session management integrated directly as the client of the IAM module.

    Read Docs
    Core

    IAM

    Identity and Access Management featuring granular roles, permissions, and security policies.

    Read Docs
    Security

    Bot Detection

    Advanced behavioral analysis and request fingerprinting to stop malicious automated traffic.

    Read Docs
    Security

    Shield Base

    CLI and programmatic toolkit for compiling offline-ready IP intelligence databases from BGP, GeoIP, Tor, FireHOL, and other public threat feeds.

    Read Docs
    Library

    Utils

    A standard library of highly optimized helpers for formatting, validation, and core logic.

    Read Docs
    Deep dive
    Learn how to configure and integrate our authentication and security suites into your applications.
    Start reading docs
Logo