Advanced Authentication & Authorization System – ASP.NET Core (.NET 6) with JWT, Refresh Tokens & OTP Verification

A production-ready Authentication and Authorization system built using ASP.NET Core (.NET 6) following Clean Architecture principles.

Key Features:

- JWT Access & Refresh Token management with rotation

- Role-Based Authorization (RBAC)

- Email verification with OTP

- Password reset & change password workflows

- Secure password hashing

- Token revocation & session management

- Clean layered architecture (API, Core, Services, Repository)

- Entity Framework Core with migrations & data seeding

The system is designed to provide a secure, scalable, and reusable authentication module that can be integrated into any web or mobile application.