Introduction

Hexaeight-Sessions is our unique solution for implementing Token less Authentication (No JWT/Cookies). HexaEight Sessions also supports Application Layer Encryption from your Front End Client up to the backend middleware.

HexaEight Sessions can be used in both client and server applications to establish secure communication.

An end user can prove their identity by encrypting information to the server application using HexaEight Session. Similarly the server application uses HexaEight Middleware Session to verify the user's identity and also proves its own identity by sending back encrypted information back to the client application.

HexaEight Session provides the following features post user authentication

  1. Application Layer Encryption / Decryption to any destination (Can be another user/resource)
  2. Data Protection to store user data in browser/local storage.
  3. A communication library to establish authenticated communication with Resource servers running HexaEight Sessions Middleware

Why Use HexaEight Sessions?

One of the prominent features of HexaEight Sessions is the ability to allow you to login into your application, without revealing your password to the application. If you are familiar with OAuth2, then the concept is similar, however, the main difference is that in OAuth2, you enter in the user credentials after redirecting to the Identity provider, while in HexaEight Sessions, you DO NOT enter any password in the web application at all, instead you will have to scan a QR Code using HexaEight official mobile application to grant access to the application.

Why Does Our Solution Matter?

HexaEight Sessions is very useful in AI Apps, when you are chatting with multiple AI Agents and you need the ability to authenticate with AI without reveling your password. Traditional Web applications, rely on the browser and today's AI Agents do not want to rely on the browser for user authentication. As AI Agents progress, HexaEight Sessions will prove to be a secure and easy way to incorporate authentication in AI agents.

Where can HexaEight Sessions Be Integrated?

HexaEight sessions can currently be integrated in the following areas (including AI apps) :

HexaEight Sessions in JavaScript Web/Mobile Applications:

HexaEight Sessions currently works and can only be integrated with Single Page Web Applications that follow the JAM stack approach. The Single Page Web Application (Vue/React/Angular) should be a precompiled static application that can be hosted on a Static Site and can talk to the backend using APIs. The browser also needs to support Web workers for HexaEight Sessions to work flawlessly.

HexaEight Sessions in Mobile Apps:

HexaEight Sessions currently works and can only be integrated with Xamarin / MAUI Applications that have the capability to integrate HexaEight Libraries.

HexaEight Sessions in Console Based Apps:

HexaEight Sessions currently works and can be integrated into any .NET console based application that has the capability to integrate HexaEight Libraries.

HexaEight Sessions in Middleware:

HexaEight Sessions currently works with .NET Backend API Middleware

HexaEight Sessions library is being actively developed for integration into other platforms, if you are looking to integrate HexaEight Sessions Library in an environment that is not listed above, please contact HexaEight Support and we can provide you additional information and the support you need to make the integration successful.