SCIM is a specification to add and remove users and groups using a standard protocol. FusionAuth can consume SCIM requests and act as the provisioning server in a SCIM client/server environment. If you are interested, you can learn more here. But this post isn’t about FusionAuth’s support; rather it is…

Happy world password day! This is a great day to change your passwords on important accounts such as banking, email or social media systems. World password day day is the first Thursday in May every year. Inspired by security researcher Mark Burnett, this is a yearly reminder to change your…

Single sign-on (SSO) is an authentication method that allows users to access multiple applications with one set of login credentials. It provides secure access to numerous applications, making logging into applications easy while alleviating the burden of authentication and authorization for application developers. Single logout (SLO) is considered the reverse…

At the end of the OAuth Authorization Code grant, after a user presents their credentials at login, a code is returned which can be exchanged for one or more tokens at the token endpoint. These tokens include an access token, an optional refresh token, and an optional id token. The…

While esports competitions are high skill cap events, both hobby gamers and elite professionals alike expect optimal network conditions when they play games. A suboptimal network can turn an enjoyable event into an infuriating one that drives players away. With tens of thousands of games released annually, it’s important to…

With only a few clicks of the mouse, I saved 16% on my company’s AWS bill. Pretty sweet, eh? This article will show you why that matters, and how I did it. FusionAuth Cloud lets you outsource operating your authentication service But first, let me set the scene. FusionAuth is downloadable software and running it is as simple as: …

Customer Identity and Access Management (CIAM) is a critical component of any modern digital business strategy. At its core, CIAM is about providing users with seamless and secure access to digital products and services. Sometimes, when thinking about authentication flows, it can be easy to get caught up in the…

WebAuthn is a new way for people to authenticate themselves to web applications. It’s a widely supported standard years in the making. All major browsers work with it, which makes it easy for developers to incorporate WebAuthn into websites. WebAuthn, commonly called “passkeys”, allows users to leverage the power of…

Years ago, before the widespread adoption of cloud and SaaS-based offerings, IT security was arguably simpler. For a while, you could assume with a decent level of confidence that anyone inside your corporate network was meant to be there and could be trusted. …