Work

bLock

Java
IAM
Security

A modular IAM system built for control freaks. Token-based, zero-trust, auditable by design.

Abstract lock and server nodes connected with glowing lines.

bLock is your last line of defense — a custom-built identity and access management (IAM) system made to be secure, auditable, and modular from the ground up.

It handles:

  • 🔐 Authentication (email/password, social logins, SSO)
  • 🧾 Authorization with access groups, custom fields, and role hierarchies
  • 🎟 Token issuing with short-lived access and long-term refresh tokens
  • 🧠 Custom claims via CustomClaims class (JWT powered by Auth0’s java-jwt)
  • 📚 Audit logs for every permission change and login attempt
  • 🔄 Full lifecycle management with CRON-based cleanup and sync

Built in Java (Spring Boot), bLock speaks both JSON (to frontend) and gRPC (to internal services), designed for horizontal scaling, clean boundaries, and separation of concerns.

It’s like OAuth, if OAuth was obsessed with structure and accountability.

Need to give users access to only what they should see — and nothing else?
Welcome to bLock.