Auth0 Platform
Okta, IncExternal reviews
233 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Auth0 is amazingly flexible and customizable yet having good usablity and simplicity
What do you like best about the product?
- Auth0 cares about and gives back to the (open source) community, e.g. with the free plan
- Auth0 develops most of their software/libraries not as proprietary closed source but in the open which improves trust and security
- Auth0's only and main focus is on their external customers and no one else (e.g. in contrast to AAD)
- Auth0 has the best documentation
- Auth0 is the easiest to use (clear separation of APIs and Applications/clients .. which competitors can only dream of)
- Auth0 is the most flexible solution on the market (especially regarding the "last mile")
- Auth0 fits the serverless mindset
- Auth0 has a great customer support
- Auth0 develops most of their software/libraries not as proprietary closed source but in the open which improves trust and security
- Auth0's only and main focus is on their external customers and no one else (e.g. in contrast to AAD)
- Auth0 has the best documentation
- Auth0 is the easiest to use (clear separation of APIs and Applications/clients .. which competitors can only dream of)
- Auth0 is the most flexible solution on the market (especially regarding the "last mile")
- Auth0 fits the serverless mindset
- Auth0 has a great customer support
What do you dislike about the product?
- The pricing model must be easier to understand.
e.g. I get asked ...
- why is the price per external active user in "developer pro" ten times higher compared to "developer"?
- why is m2m tokens not included in "developer"?
Because what people told me they are doing in order to avoid the much higher "per user cost" of the "developer pro" plan is to use "users", assigned "permissions" and the "password grant" instead of "m2m apps" and the "client_credentials grant". I dislike this happening very much.
- Auth0 Management Portal's ...
- usability on mobile devices. It's not really adapting to smaller screen sizes.
- application and API search functionality is basically not usable. I'd wish that either the "user and application" seach would work (having a lot of users and apps) and be extended also for APIs or (better) have dedicated search for apps and APIs in the respective overviews .. that would work as well and as fast as the API search that one only gets to use when authorizing a non-interactive app for an API (where you have the search field for the API).
- The user enumeration attack vulnerability when having a database connection's signup functionality enabled (also see support ticket: https://support.auth0.com/tickets/00440353)
- The missing functionality in the Management API regarding Auth0 tenants, e.g. to create, delete etc.
- The missing (tenant-agnostic) logs for operations/events regarding Auth0 tenants, e.g. logs for events like "TenantWasCreated" etc.
- The fact that you can authorize dashboard admins only for either individual apps or EVERYTHING (including the creation of new Auth0 tenants 😳). I'm missing at least some kind of privileges for a group of apps and APIs.
e.g. I get asked ...
- why is the price per external active user in "developer pro" ten times higher compared to "developer"?
- why is m2m tokens not included in "developer"?
Because what people told me they are doing in order to avoid the much higher "per user cost" of the "developer pro" plan is to use "users", assigned "permissions" and the "password grant" instead of "m2m apps" and the "client_credentials grant". I dislike this happening very much.
- Auth0 Management Portal's ...
- usability on mobile devices. It's not really adapting to smaller screen sizes.
- application and API search functionality is basically not usable. I'd wish that either the "user and application" seach would work (having a lot of users and apps) and be extended also for APIs or (better) have dedicated search for apps and APIs in the respective overviews .. that would work as well and as fast as the API search that one only gets to use when authorizing a non-interactive app for an API (where you have the search field for the API).
- The user enumeration attack vulnerability when having a database connection's signup functionality enabled (also see support ticket: https://support.auth0.com/tickets/00440353)
- The missing functionality in the Management API regarding Auth0 tenants, e.g. to create, delete etc.
- The missing (tenant-agnostic) logs for operations/events regarding Auth0 tenants, e.g. logs for events like "TenantWasCreated" etc.
- The fact that you can authorize dashboard admins only for either individual apps or EVERYTHING (including the creation of new Auth0 tenants 😳). I'm missing at least some kind of privileges for a group of apps and APIs.
What problems is the product solving and how is that benefiting you?
see also: "What do you like best?", but especially the flexibility one has using rules. In a rule you can go and query legacy systems for authorization information and put those inside the tokens.
Recommendations to others considering the product:
If you're using machine-to-machine communication, ensure to cache your tokens.
Outstanding solution for Securing Applications
What do you like best about the product?
The integration with multiple solutions/protocols, being able to secure an application with basically any other 3rd-party vendor.
What do you dislike about the product?
Nothing relevant, the product is pretty solid and mature
What problems is the product solving and how is that benefiting you?
- Ease of integration with many other logins
- Standardization on how to secure software applications
- Nice UI to manage security
- Standardization on how to secure software applications
- Nice UI to manage security
Auth0 Ambassador
What do you like best about the product?
the opportunity to learn more and more about security, and through the Auth0 Ambassador program to help other people acquire this knowledge.
What do you dislike about the product?
Currently, I have found so much support, and so much documentation to help me to grow professionally and technically, that I have not experienced anything negative.
What problems is the product solving and how is that benefiting you?
I have not used it professionally, but I have used it to impart knowledge in communities, and it was inspiring to see that in the last workshop, we had 101 attendees, and the majority did not know about auth0 and were very excited and enthusiastic to learn.
Simple Enough Compliance.
What do you like best about the product?
Nice controller. JDK library is simple enough
What do you dislike about the product?
Console navigation loses context. It's extremely upsetting. Switching from one search to another deletes what has been written before. I want further support for applications from a stateless model.
What problems is the product solving and how is that benefiting you?
The overall software is easy to integrate and supports properly. The convergence of businesses is cool. The online console is beautiful and gives information, but it sometimes does not suit our calls and it is not pleasant to browse.
Recommendations to others considering the product:
Perhaps follow a little better instructions template.
Reduce Hassles for Developers
What do you like best about the product?
Auth0 is more developer friendly providing easier documentation for integrating solutions to your applications.
What do you dislike about the product?
May be can include additional support in StackOverFlow. Though it has good presence in Twitter and Auth0 Community portals.
What problems is the product solving and how is that benefiting you?
As I mentioned, Auth0 documentation is the best. With in minutes you can spin up solutions integrating various providers.
Support that just doesn't give up
What do you like best about the product?
Although their primary service is great for what they do, I must point out that their support is very thorough and detail oriented with obvious aim to help and do the SUPPORT like no service I've met in a while.
Rarely people have chance to meet this kind of support.
Rarely people have chance to meet this kind of support.
What do you dislike about the product?
Maybe they should add bit better support for mobile apps.
What problems is the product solving and how is that benefiting you?
We had problems implementing Auth0 on a PhoneGap hybrid mobile app and we realized that it's not really "piece of cake" when Auth0 support stepped in.
Recommendations to others considering the product:
Just try it and see if its for you
Secure bootstrap of authentication and authorization
What do you like best about the product?
It takes less than a day to configure Auth0 into our application workflow. Integration is easy and secure. All social media is already available with Auth0 as well as enterprise connections like salesforce. I had a minimum or no issues while integrating these connections. Each day, they are providing more and more industry standard connection in easy to connect manner. The best part of Auth 0 is their complete documentation. All the features and their uses are well documented with "use cases" and examples.
What do you dislike about the product?
Some lifecycle hooks are hard to implement for advanced uses. I had one use case about checking the type of user entering the form from different login forms, wanted to create user-based on different user types, but hooks and even other rules were not easy to implement for this feature.
What problems is the product solving and how is that benefiting you?
Auth0 definitely saves time. Mainly for demo projects or MVP products that need to be release real quickly. Social connections definitely help save time. It takes forever to create a different connection and login process for different social media. We can connect our social connection later. These basic things help boost your application in the early stage of the product and make you keep moving to main business logic. Authentication is important and Auth 0 managing it with the secure way is something valuable for all of us.
Authentication made simple
What do you like best about the product?
Auth0 makes it easy to integrate and easy to use. The extensive documentation and other resources are really helpful.
What do you dislike about the product?
I don't find any disadvantages or limitations with Auth0. As a web developer all my authentication needs can be fulfilled by Auth0.
What problems is the product solving and how is that benefiting you?
User experience in terms of SSO. I use Auth0 to securely authenticate users.
I used to create SSO with my own custom code / SQL tables which cause hassles in keeping the data secure and updating the codebase from time to time.
Recently, I am using multi-factor authentication too which adds another layer of security
I used to create SSO with my own custom code / SQL tables which cause hassles in keeping the data secure and updating the codebase from time to time.
Recently, I am using multi-factor authentication too which adds another layer of security
Recommendations to others considering the product:
If you are looking for a secure SSO, MFA then Auth0 is one of the best possible solutions out there. You can test it with the free quota. They have lot of resources that helps in integrating and using Auth0 easily.
Auth0 Survey
What do you like best about the product?
I love to use Auth0 Passwordless and secure my apps with Auth0
What do you dislike about the product?
On some occasions I have had problems with the integration of the universal login and that becomes tedious.
What problems is the product solving and how is that benefiting you?
Basically I save a lot of work when securing an application and invest time in other things within the application leaving the authentication for Auth0 to do it.
Developer friendly product
What do you like best about the product?
There are a lot of useful libraries so that developers can implement authentication and authorization to their own applications easily.
What do you dislike about the product?
Difficult to design and implement user journeys. In common scenarios admins want to design complex user flow while end-users sign in/up, but it is difficult to implement such flows using Auth0.
What problems is the product solving and how is that benefiting you?
Customer required to implement complex rules or conditions on creating assertions. Other IDaaS or identity products don't have fine grained functionality to customize assertions.
showing 81 - 90