An authentication system built on Next.js almost from scratch.
Uses LRU cache for rate limiting, Drizzle ORM & NeonDB to store users/codes/sessions/etc., Resend API to send emails, Cloudflare Turnstile for captcha.
- https://pilcrowonpaper.com/blog/how-i-would-do-auth/
- https://owasp.org/www-community/Slow_Down_Online_Guessing_Attacks_with_Device_Cookies
