Introduction

What is it?

FortWorx is a stand-alone, self-hosted component to improve web application security. It works by identifying potential suspicious activity during login and suggesting further actions to the applicaitons to prevent account takeover in web applications.

How it works?

Your web application communicates with FortWorx over a simple RESTful API when a user attempts to login to your application and returns a "Verdict" of Grant, Notify or Deny to the application based on the calculated threat level.

Users can set their own desired protection level to Relax, Normal or Strict to influence the logic if needed.

If your application supports two-factor authentication, FortWorx's verdict can help with skipping the 2nd factor authentication to reduce login friction for the users while keeping the accounts as safe. This is similar to the logic used by companies like Google, when the 2nd factor authentication is only required in certain circumstances.

How can I use it?

FortWorx is a self-hosted component which runs next to your application. It's best used in a containerized environment like Docker Compose or Kubernetes but can run on any environment if needed. To use FortWorx please read the Installation guide.

What is it?#

How it works?#

How can I use it?#

What is it?

How it works?

How can I use it?