No-Code February 22, 2020

What is everybody using for Auth?

Jim Hall @jimbol

I'm looking for really easy was to set up authentication for an app. Hopefully something not too expensive for around 1,000 - 10,000 users.

  1. 5

    Hello @jimbol,

    OK, I realize you posted this in No-Code. But let me just share with you what I use first.

    I build my own REST API with a PHP-based API gateway solution called Fusio. It is free and open source and the developer is quite active in responding and developing the project. I even started teaching it to local gov agencies and companies here in Malaysia. I wrote a tutorial ebook about it. So that is what I use for authentication. It is based on JWT or JSON Web Token.

    But anyway, since you posted this in the No-Code group, I guess what's more suitable are the hosted options, and not one where you'd have to install yourself.

    I did some Googling and research recently for SaaS templates and boilerplates. Among the language specific options, I also found hosted solutions like these. While they are mostly for building SaaS or membership site, which most has strong payment integration, I believe their authentication module should bel able to cover your needs.

    • Outseta by an Indiehacker here, @GeoffRoberts. It is mostly for SaaS it comes with subscription management, email marketing, live chat, CRM... basically crucial stuffs after you deployed a SaaS. Outseta is free for up to 25 users.
    • Userbase is mainly for Javascript frontend websites and storing of application data. For now, they don't have payment & subscription integration. But seems like a quick nice solution. If you don't need payment, then this is good enough.
    • MemberStack is the commonly talked about among no-code builders, and I see it as a popular choice among Webflow users.
    • Pabbly which has subscription management, and also option as a suite to add their other tools like email marketing, form builder.

    While currently I am using Fusio, mostly for clients, I may consider one of the four if I am building a public facing SaaS.

    OK, for more advanced solution, you may want to look at Auth0, Firebase, AWS Cognito, OneLogin, etc.

    I hope this helps. Have a great day!

    1. 2

      Thanks for giving a shout out @kidino! Much appreciated.

    2. 2

      This is super userful. Excellent resource. Thank you.

  2. 4

    I've been using the Ory stack, which is pretty cool if you want to self host (although it requires some wiring together):

    If I were to completely outsource it, I'd go for Auth0 (

    1. 1

      Used Auth0 a couple time and was pleased with it, but Ory looks very interesting! Thanks for sharing

  3. 3

    Implemented JWT + session for my open source SaaS boilerplate

  4. 3

    I use Firebase Authentication for all my apps:

    1. 3

      This comment was deleted 2 days ago.

  5. 2

    I've worked on a lot of projects for all sorts of clients (from startups to banks) and we used Auth0 on a lot of them. In my experience, if your app's auth flow is very similar to Auth0's built-in flow (meaning you don't need to customize it), it is a great solution that saves you a bunch of time, although it's a bit too expensive for small businesses with lots of users.
    I'm now using Auth0 in my own startup too (Browse AI).

  6. 2

    I coded the back end for my website using Laravel (PHP framework) - so I'm using Laravel Passport for API authentication. How you set up authentication depends on how your service it built and what tech stack you're using. What are you using so far?

  7. 2

    I used Amazon Cognito for my latest project. To save time, I even opted to use their “hosted UI” which provides a basic login form with configurable fields. There’s a few limitations tho... for example, I haven’t found a way to add an “accept terms of service” checkbox.

    Design has also been limited. It’s good enough for now and saved me a ton of time not having to worry about login and signup forms.

  8. 2

    My app SongRender uses a Node backend with express, so I just use bcrypt (for password hashing) + express-session.

  9. 2

    This comment was deleted 4 months ago.

  10. 1

    This comment was deleted 7 months ago.