Welcome to Mawhea Website Description Mawhea is an OpenID Connect (OIDC) identity provider using facial recognition for multi-factor authentication (MFA). This website is used for commercial purposes as well as being the user portal for account management.
Technical Information Mawhea was build using Ionic Framework, Angular, Angular Material, and AWS Amplify with facial recognition provided by AWS Rekognition. Mawhea consists of a user portal, a developer portal, a single sign-on (SSO) portal, and an OpenID Connect (OIDC) provider. All portals are connected to the same AWS Amplify backend. This project is setup as a mono repository hosted on a private Bitbucket account. I have published some of the angular libraries I created for this project to the public NPM registry. This application uses AWS Amplify on the front-end portals to communicate with AWS Cognito, S3, and AppSync GraphQL. Facial recognition MFA was achieved by implementing a Cognito custom authentication flow incorporating AWS Rekognition. AWS Route53 is used as the DNS for the domain. Custom domain names have been created to point to the OIDC provider and a public facing S3 bucket for providing user profile images. AWS Amplify is providing hosting for the root domain. Custom domain names, CloudFront distributions, and S3 buckets have been created for hosting the other sites.
Developer Portal https://developer.mawhea.com Want to use Mawhea to sign in to your application with built in MFA? Visit this site to become a developer and create an OIDC client for your application.
Single Sign-On (SSO) Portal https://sso.mawhea.com This is the web portal used for authentication during the OpenID Connect request flow.
OpenID Connect (OIDC) Provider https://oidc.mawhea.com The Mawhea OIDC Provider was created using the oidc-provider node module with the DynamoDb adapter. The OIDC Provider runs as a serverless express AWS lambda function behind API Gateway and a custom domain name.
Demo Website https://demo.mawhea.com Visit this website to experience a federated sign in using the Mawhea SSO portal.