[Zirias]

New release of my authentication service written in C. It now offers "multi-reactor" (multiple threads each running their own event loop). In my jmeter tests, it can now support 40,000 req/s fetching the login form and performing login POSTs on my old Xeon E3-1240L v4 (quad-core low-power CPU) which isn't even idle ... of course with everything optional (TLS, request logging, remote host resolving) disabled.

Might be overkill to tune such a simple tool for performance, but I hope to reuse the code eventually for other web services.

Features: Authentication with PAM, a htpasswd-like file with bcrypt hashes, executing some external tool, AND "proof-of-work" crypto challenge (to block malicious bots).