Implement auth and profile APIs

Q: Implement auth and profile APIs

This question evaluates backend API design competencies such as authentication and bearer-token access control, user profile data modeling, input validation, error handling, and state management for an in-memory service within the System Design category.

Q: How do I approach System Design interview questions?

System Design questions require understanding of core concepts and practice. PracHub provides solutions with explanations to help you master system design interviews.

Question

Design an In-Memory HTTP API for Auth and Profile Management

Context

Design a minimal, single-node, in-memory HTTP API that supports user registration, authentication, profile retrieval/update, and account deletion. Assume no external database; persistence is lost on restart. Password hashing can be mocked.

Requirements

Implement the following endpoints:
1. Register a new user (email + password)
2. Authenticate (login)
3. Retrieve current user profile
4. Update current user profile
5. Delete current user account
Provide data models and request/response JSON schemas
Include basic validation and error handling conventions
Discuss trade-offs and possible extensions (sessions/tokens, password resets, audit logs)

Assumptions

Single-process, single-instance server (no clustering)
Password hashing is a placeholder function; do not implement real crypto
Access control for profile endpoints uses a bearer token returned by login
Focus on an MVP suitable for an onsite system design interview

Implement auth and profile APIs

Design an In-Memory HTTP API for Auth and Profile Management

Context

Requirements

Assumptions

Solution

Comments (0)

Implement auth and profile APIs

Overview

Design an In-Memory HTTP API for Auth and Profile Management

Context

Requirements

Assumptions

Solution

Comments (0)