**Current State** * The authentication/authorization system is overly complex, with multiple unnecessary layers. * No rate limiting is in place. * JWTs are currently used for authentication, which introduces security and complexity concerns. **Proposed Solution** * Adopt **Better Auth** to simplify and unify authentication and authorization. * Implement **rate limiting** to protect against abuse. * Add **two-factor authentication (2FA)** for stronger security. * Streamline **authorization** to ensure consistent and maintainable access control.
Current State
Proposed Solution