About

Unified identity
for the Web3 ecosystem

Libermall ID solves account fragmentation across the Libermall ecosystem. One profile works everywhere, history carries over, and there is no need to sign up a hundred times.

Mission

Why we do this

🎯 Mission

The Libermall ecosystem is a network of connected products: a marketplace, a DEX (dex.libermall.com), virtual cards, a reviews catalog, AI services and a payment platform (pay.libermall.com). Each one works better when it knows the user context — which sites you rated, which coins you hold, your trader rating. Before Libermall ID, every service ran its own account base and the connections between them kept breaking.

⚡ Solution

Libermall ID — one profile that works everywhere. History carries over between products. No need to register a hundred times. One-tap Telegram sign-in, TON Connect for crypto wallets, email magic link for the classic flow. Standard OpenID Connect — no vendor lock-in.

Tech stack

What it is built on

Casdoor core

Open-source identity server (BSD 3-Clause). Supports OpenID Connect, OAuth 2.0, SAML 2.0 and LDAP federation. 11k+ stars on GitHub.

PostgreSQL 16 + Redis 7

Profile and sessions in Postgres, cache and nonce in Redis. Daily backup, encryption at rest.

JWT RS256

4096-bit token-signing key. JWKS rotation. Token lifetime of 7 days.

Architecture

How it works under the hood

Standard OAuth 2.0 / OpenID Connect flow. Custom adapters for Telegram Login Widget and TON Connect proof.

Flow
┌─────────────────────────────────────────────────────────────────┐
│                   id.libermall.com (Casdoor)                    │
│                                                                 │
│  ┌─────────────┐  ┌─────────────┐  ┌─────────────┐  ┌────────┐  │
│  │ TG Login    │  │ TON Connect │  │ Email Magic │  │ Apple  │  │
│  │ IdP         │  │ IdP custom  │  │ Link        │  │ Google │  │
│  └──────┬──────┘  └──────┬──────┘  └──────┬──────┘  └────┬───┘  │
│         └────────┬───────┴────────────────┴──────────────┘      │
│                  ▼                                              │
│         ┌────────────────────┐                                  │
│         │   Casdoor Core     │                                  │
│         │  Users / Sessions  │                                  │
│         │  Tokens (JWT)      │                                  │
│         │  Audit Log         │                                  │
│         └────────┬───────────┘                                  │
└──────────────────┼──────────────────────────────────────────────┘
                   │ OAuth2 / OIDC
                   ▼
   ┌───────────────────────────────────────────────┐
   │            OAuth clients (products)           │
   │  sites.reviews · tonchat.ai · ton.ceo · DEX   │
   │  card · marketplace · 3rd-party integrations  │
   └───────────────────────────────────────────────┘
Roadmap

Roadmap

Five phases from MVP to full cross-product integration with tokenized identity.

✓ Phase 1 · Done

Foundation

VPS, Casdoor, SSL, DNS — the base infrastructure.

✓ Phase 2 · Done

Integration

Telegram IdP, @LibermallIDbot, sites.reviews as the first OAuth client.

● Phase 3 · In progress

Brand & UX

Landing site, brand book, Mini App, dashboard for managing wallets and sessions.

○ Phase 4 · Next

NFT usernames + $MALL

Minting @handle.lbm via a TON smart contract. Token economy powering the ecosystem rating.

○ Phase 5 · Future

Cross-product fabric

Wishlists in the marketplace tied to your ID, trader rating on dex.libermall.com, savings on Card, reviews on Sites.Reviews — one activity layer across the whole ecosystem. Quest system and achievements for actions in different products.

○ Phase 6 · Vision

Libermall Passport

A cryptographic passport modeled after Pavel Durov's Telegram Passport: verified documents (KYC) and biometrics under a cryptographic seal. Bound to your Libermall ID. Usable anywhere verification is required — crypto exchanges, banks, freelance platforms — without exposing the underlying data to the operator.

○ Phase 7 · Vision

Libermall Mail (on TON Storage)

Every Libermall ID gets a @id.libermall.com email with end-to-end encryption à la Proton Mail. Metadata and encrypted message bodies live in the distributed TON Storage network — no centralized provider. The goal is to turn email from "yet another inbox" into a real privacy tool with self-custody.

Open source

Everything we can — public

Auth core — Casdoor (BSD 3-Clause). Our UI, bot and Mini App — MIT.

Questions, ideas, suggestions?

The Libermall team is open to dialogue. Email us — we reply within 24 hours.