Table of Content Introduction What is a URL What is a URI What is a URN Conclusion Introduction In the ever-evolving landscape of web development, often times it can be confusing navigating the waters of all the acronyms and technical terms. In this blog we are going to be looking at URL, URI, and…

Table of Content Introduction What are JSON Web Keys (JWKS) How do JWKS work? Benefits of using JWKS Considerations for JWKS implementation Conclusion Introduction JWTs or Json Web Tokens play a pivotal role in modern authentication. They are most commonly used to identify authenticated users and validate API requests. Part of this verification process…

Introduction Although they are often conflated with each other, Authentication and Authorization represent two fundamentally different aspects of security that work together in order to protect sensitive information. In this blog, we will go over some of the key differences between the two. The Foundation — What is Authentication? Authentication is the process of verifying the identity…

Table of contents Introduction What is SAML and OAuth What are the use cases? Security and mechanisms Conclusion Introduction SAML (Security Assertion Markup Language) and OAuth (Open Authorization) are key protocols for authentication and authorization. While both protocols serve essential purposes, they possess distinct characteristics that make them suitable for specific use cases. …

Table of Contents Introduction Real world migration scenarios Our experience of migrating customers over to SuperTokens Understanding Lazy Migration The benefits of Lazy Migration Conclusion Introduction: On the surface, migrating your users from one authentication solution to another seems simple enough. Remove the old authentication logic, integrate with the new authentication provider, and finally…

Table of contents Open-Source Authentication Providers Ory Kratos / Ory Identities Keycloak SuperTokens Choosing an Auth Provider Open-Source Authentication Providers Compared to a couple of years ago, open-source authentication has seen huge progress. In this post, we’ll compare three of the leading open-source authentication providers — Ory, Keycloak, and SuperTokens. Each of these providers has its…

High Level Refresher Django is a high-level Python framework that follows the model-template-views architectural pattern. Django is one of the most popular web frameworks due to its security, scalability, and flexible design. Companies like Instagram, Reddit, and Dropbox all used Django. Bootstrap is an open-source CSS framework that provides pre-built HTML, CSS, and…

by SuperTokens team Introduction Email verification is contentious, it increases friction and adds yet another step to onboarding. However, when done right, email verification can lead to better communication with users, avoid fake accounts / negative externalities, and maintain high marketing reputation. In this post, we’ll break down why email verification…

by SuperTokens Team Introduction Passwordless authentication is becoming an increasingly popular choice for developers. Even notable names like Slack, Notion, and PayPal are all transitioning to SMS, email, or social logins for their authentication.