I managed to outsource all authentication headaches in 1 hour for my SaaS
Authentication seems easy at first, but doing it correctly is hard, really hard. This includes password resets, SMS validation, and cross session login from web to Android to iOS, etc.
I wanted my SaaS software company, Goto Tools, to be as 100% automated and self updating as possible so I chose to externalize anything that isn’t our core. <plug>Goto Tools provides some tools that Google uses internally, such as “go/” style short links. These allow teams to easily remember and share ways to access and find internal resources such as typing in “go/hr” in the browser address bar to access your HR system, or go/hire for access to the interview system, etc. These often help invalidate the need for many intranet pages, etc. Take a look at how I built it in a weekend because we didn’t like the price of alternative offerings.</plug>
I often find that authentication is one of the components that junior engineers (or even some senior engineers) think will be simple, but ends up being a time suck with little to no end user value, and worse a component that can expose tremendous security risk.
