Open Source · Secure · Intelligent
The Platform for Cybersecurity and AI Solutions
A platform delivering open-source cybersecurity and AI solutions across multiple domains.
allsafe-access.allsafex.com | shonet.allsafex.com | allsafe-auth (PyPI) | allsafe-flow (npm) | allsafe-otp
About the Platform
AllSafeX is an open-source ecosystem delivering cybersecurity, authentication, automation, and developer tooling solutions across multiple domains. It is designed to support secure software development, enterprise infrastructure protection, and AI-driven security operations.
The platform focuses on practical security engineering, scalable architecture, and developer-first integration. Every product follows the same principles: open source transparency, enterprise-grade security, and intelligent design.
Core Products
allsafe-access.allsafex.com — Zero-Trust Remote Access Suite
Identity and access management platform with zero-trust remote access, agent-based architecture, and mTLS encryption.
Components:
| Component | Purpose |
|---|---|
| allsafe-proxy | Secure gateway for all remote connections with agent management, mTLS encryption, RBAC, audit logging, and session relay |
| allsafe-agent | Lightweight agent on remote machines with automatic registration, encrypted shell sessions, low resource footprint, self-healing connectivity, and multi-platform support |
| allsafe-cli | Command-line interface with interactive shell, auto-completion, built-in MFA support, agent discovery, and session management |
| allsafe-admin | Centralized management console for user management, permission enforcement, real-time session monitoring, and audit log export |
Use Case: Secure remote access for distributed teams without traditional VPN vulnerabilities.
shonet.allsafex.com — Enterprise Security and Workflow System
Offline-first restaurant management and POS system designed for hospitality environments with zero-internet operation.
Components:
| Component | Platform | Purpose |
|---|---|---|
| Shonet Master | Windows | Complete POS system working without internet, offline database with full integrity, LAN synchronization |
| Shonet Waiter | Android | Mobile ordering app for waitstaff, order taking and modification, table management, works completely offline |
| Kitchen Display | Web/Display | Real-time order management for kitchen staff, prep time tracking, order status updates, no internet required |
| Analytics Hub | Web | Comprehensive analytics and reporting, sales analysis, item popularity reports, on-premise data storage |
Use Case: Restaurants and hospitality businesses that cannot tolerate internet-dependent downtime.
allsafe-auth (PyPI) — Python Authentication Library
Complete authentication library supporting TOTP, HOTP, Active Directory, QR generation, and Django + Inertia integration.
Key Features:
- Active Directory (LDAP) authentication
- HOTP / TOTP multi-factor authentication
- QR code generation for MFA setup
- User listing and management from Active Directory
- Django + Inertia.js integration
- MIT Licensed · Python >= 3.6
Installation:
pip install allsafe-auth
Basic Usage:
from allsafe_auth import TOTPAuth, ADAuthenticator
# TOTP Multi-Factor Authentication
totp = TOTPAuth(issuer="MyCompany", account_name="user@example.com")
secret = totp.generate_secret()
qr_uri = totp.get_qr_uri() # For Google Authenticator
is_valid = totp.verify(user_code)
# Active Directory Authentication
ad = ADAuthenticator(server="ldap.company.com", domain="COMPANY")
user = ad.authenticate("username", "password")
Django Integration:
# settings.py
INSTALLED_APPS = ['allsafe_auth']
ALLSAFE_AUTH = {
'AD_SERVERS': ['ldap.company.com'],
'MFA_ENABLED': True,
'TOTP_ISSUER': 'MyCompany',
}
allsafe-flow (npm) — JavaScript Workflow Automation Framework
Declarative service orchestration with YAML configuration, color-coded logs, health checks, and real-time monitoring.
Key Features:
- Declarative YAML service configuration
- Color-coded logs per service
- HTTP health check endpoints
- Environment variable support
- Start/stop/restart individual or all services
- Real-time status monitoring
Installation:
npm install -g allsafe-flow
Example Configuration (devflow.config.yaml):
services:
database:
command: "docker run -p 5432:5432 postgres:15"
health_check:
endpoint: "tcp://localhost:5432"
interval: 5
log_color: "blue"
redis:
command: "redis-server --port 6379"
health_check:
endpoint: "tcp://localhost:6379"
interval: 3
log_color: "red"
api:
command: "python app.py"
env:
DATABASE_URL: "postgresql://localhost/myapp"
depends_on: ["database", "redis"]
health_check:
endpoint: "http://localhost:8000/health"
interval: 10
log_color: "green"
Commands:
allsafe-flow start # Start all services
allsafe-flow stop # Stop all services
allsafe-flow status # View service status
allsafe-flow logs api # Tail logs for specific service
allsafe-otp — Secure OTP Generation and Verification System
Lightweight Python package for generating Time-Based One-Time Passwords (TOTP) and QR codes for two-factor authentication.
Key Features:
- Generate secure TOTP codes using HMAC-SHA1
- Create scannable QR codes for Google Authenticator
- Easy integration into Python projects
- MIT Licensed · Python >= 3.6
Installation:
pip install allsafe-otp
Usage Example:
from allsafe_otp import TOTP, generate_qr_code
# Create new TOTP instance
totp = TOTP(issuer="SecureApp", account_name="user@example.com")
# Get secret and QR URI
secret = totp.secret
qr_uri = totp.uri()
# Generate QR code image
qr_image = generate_qr_code(qr_uri)
# Verify one-time password from user
if totp.verify(user_input_code):
print("Authentication successful")
else:
print("Invalid code")
Key Capabilities Across the Platform
| Capability | allsafe-access | shonet | allsafe-auth | allsafe-flow | allsafe-otp |
|---|---|---|---|---|---|
| Secure authentication | ✓ | ✓ | ✓ | ✓ | |
| Zero-trust architecture | ✓ | ||||
| Offline-first operation | ✓ | ||||
| MFA / TOTP support | ✓ | ✓ | ✓ | ||
| Active Directory integration | ✓ | ✓ | |||
| Service orchestration | ✓ | ||||
| Real-time monitoring | ✓ | ✓ | ✓ | ||
| Audit logging | ✓ | ✓ | |||
| Developer-first APIs | ✓ | ✓ | ✓ | ✓ | |
| Open source (MIT) | ✓ | ✓ | ✓ | ✓ | ✓ |
Architecture Philosophy
AllSafeX products follow consistent design principles:
-
Open Source First — Complete transparency, no vendor lock-in, community-auditable code. MIT License enables free commercial and personal use.
-
Zero-Trust Security — Every request authenticated, every connection encrypted (mTLS), no implicit trust. Defense in depth with RBAC, MFA, and comprehensive audit logs.
-
Developer-First Experience — Simple APIs, comprehensive documentation, framework integrations (Django, Inertia.js), and CLI tools.
-
Offline Capability — Systems work without internet connectivity. Critical for hospitality environments and secure facilities.
-
Minimal Resource Footprint — Agents and services designed for low memory (under 50MB) and minimal CPU usage.
Deployment Scenarios
| Scenario | Recommended Products |
|---|---|
| Secure remote workforce access | allsafe-access suite (proxy + agent + cli + admin) |
| Adding MFA to Django applications | allsafe-auth or allsafe-otp |
| Local development service orchestration | allsafe-flow |
| Restaurant POS (no internet required) | Shonet RMS (Master + Waiter + Kitchen + Analytics) |
| Enterprise LDAP/AD authentication | allsafe-auth |
| Two-factor authentication for Python apps | allsafe-otp |
Get Started
Website: https://www.allsafex.com
Documentation: Complete guides, API references, and integration tutorials at allsafex.com/docs
Package Repositories:
- PyPI:
allsafe-auth,allsafe-otp - npm:
allsafe-flow - Direct downloads: allsafe-access suite, Shonet RMS
License: MIT License — free for commercial and personal use
Maintainer
Daniel Destaw — Principal Engineer & Founder
Built with passion for secure software architecture and intelligent systems. Making enterprise-grade security accessible to developers and organizations worldwide through open-source technology.
Open Source · Secure · Intelligent