Authentication

Authentication and OAuth 2.0 Providers in DartStream

DartStream offers robust authentication capabilities by integrating with various OAuth 2.0 providers. These providers enable secure user authentication and authorization for applications of all sizes. Depending on whether you’re using the Open Source DartStream or the SaaS DartStream, you have access to different sets of providers tailored to your needs.

OAuth 2.0 Providers Supported by DartStream

Open Source DartStream supports widely used and flexible authentication providers, making it ideal for developers building non-commercial or self-hosted solutions.

1. Firebase Authentication

   • Dart SDK: firebase_dart_admin_auth_sdk

   • Firebase Authentication simplifies the process of adding secure user authentication using email, phone number, or federated identity providers like Google, Facebook, and Apple.

2. Azure Active Directory (Azure AD)

   • Dart SDK: azureactivedirectory_dart_auth_sdk

   • Azure AD supports enterprise-level authentication for apps using Microsoft’s secure identity platform, allowing integrations with Office 365 and Microsoft Graph.

3. Cognito

   • Dart SDK: cognito_dart_admin_auth_sdk

   • Amazon Cognito offers scalable user authentication with support for SSO, MFA, and federated identities.

SaaS DartStream expands its support to premium and enterprise-grade authentication providers. These services are tailored for businesses requiring advanced authentication mechanisms, identity management, and seamless integrations.

1. Entra ID (formerly Azure Active Directory B2C)

   • Dart SDK: entra_ID_dart_auth_sdk

   • Entra ID specializes in scalable consumer identity and access management, offering advanced features like custom user flows and conditional access policies.

2. Keycloak

   • Dart SDK: keycloak_dart_auth_sdk

   • Keycloak is an open-source identity and access management solution with support for SSO, federation, and social logins.

3. OneLogin

   • Dart SDK: onelogin_dart_auth_sdk

   • OneLogin provides secure and user-friendly SSO with advanced features such as adaptive authentication and provisioning.

4. Okta

   • Dart SDK: okta_identity_dart_auth_sdk

   • Okta offers comprehensive identity management with support for SSO, MFA, and directory integration.

5. Auth0

   • Dart SDK: auth0_dart_auth_sdk

   • Auth0 is a versatile identity platform supporting social logins, passwordless authentication, and enterprise identity providers.

6. Stytch

   • Dart SDK: stytch_dart_auth_sdk

   • Stytch specializes in passwordless authentication with options like email magic links, SMS codes, and WebAuthn.

7. Fingerprint

   • Dart SDK: fingerprint_dart_auth_sdk

   • Fingerprint offers advanced device identification and fraud detection capabilities for secure user authentication.

8. PingIdentity

   • Dart SDK: pingidentity_dart_auth_sdk

   • PingIdentity provides enterprise-level SSO and adaptive authentication with robust identity federation.

9. Transmit Security

   • Dart SDK: transmit_dart_auth_sdk

   • Transmit Security offers no-code and low-code identity management solutions with a focus on passwordless and biometric authentication.

10. Magic

    • Dart SDK: magic_dart_auth_sdk

    • Magic enables decentralized and passwordless authentication using blockchain-backed security.

Authentication Features

DartStream offers robust and scalable authentication features to cater to applications ranging from small-scale projects to enterprise-level solutions. Both the open-source and SaaS versions include essential and advanced authentication functionalities to ensure secure and user-friendly access management.

The framework focuses on essential authentication capabilities, making it ideal for startups, individual developers, and small-to-medium-scale applications:

1. Basic OAuth Support

   • Integration with popular OAuth providers like Google and GitHub.

   • Simplifies login flows for third-party authentication.

2. JWT Authentication

   • Secure session management with JSON Web Tokens (JWTs).

   • Tokens ensure stateless authentication for API interactions.

3. Role-Based Access Control (RBAC)

   • Assign and manage user roles such as admin, user, or custom roles.

   • Supports basic authorization for role-specific actions.

4. Email Verification

   • Ensures user legitimacy with email confirmation for new registrations.

   • Prevents unauthorized account creation.

5. Password Hashing and Encryption

   • Industry-standard algorithms for secure password storage (e.g., bcrypt).

   • Protects sensitive user information with encryption mechanisms.

The SaaS version of DartStream builds upon the open-source features with advanced, enterprise-grade authentication capabilities tailored for high-security and compliance-focused applications:

1. Multi-Factor Authentication (MFA)

   • Adds an extra layer of security with options like SMS, email, and authenticator apps.

   • Customizable based on user preference or security requirements.

2. Single Sign-On (SSO)

   • Integration with SAML, Okta, Azure AD, and other SSO providers.

   • Simplifies access management for enterprise environments.

3. Behavioral Authentication

   • Monitors user behavior to detect anomalies and flag suspicious activities.

   • Enhances security with minimal impact on user experience.

4. User Analytics and Reporting

   • Provides insights into user activity, login patterns, and session trends.

   • Enables data-driven decision-making for authentication policies.

5. Session Management Dashboard

   • Centralized interface for viewing and managing user sessions across devices.

   • Includes options to terminate or suspend active sessions.

6. Account Locking and Alerts

   • Automatically locks accounts after detecting multiple failed login attempts.

   • Sends alerts to users and administrators for suspicious activity.

7. User Consent and Privacy Management

   • Streamlines the collection and management of user consent.

   • Ensures compliance with regulations like GDPR.

8. Biometric Authentication

   • Support for fingerprint and facial recognition for seamless login experiences.

   • Integrates with devices supporting biometric features.

9. Compliance Features

   • Built-in tools for GDPR and HIPAA compliance, including data masking and audit logging.

   • Ensures secure handling and storage of user data.

10. Advanced User Management

    • Comprehensive dashboard for managing user roles, permissions, and access control.

    • Offers granular control over user capabilities and restrictions.