authentication

#authentication

2 articles

Magic Link Pitfalls

Evan Todd wrote "Magic Link Pitfalls," an article going over some of the errors he's seen in sites that mail a passthrough link to log in to users. The idea is simple: to "log in" you say "send me a link," a link gets generated and sent, the user clicks a link, and they're logged in. But there're problems with this approach: they can be avoided, but not without taking care.

By Chronos|March 25, 2026

→

authentication web

Kotauth: a Self-hosted Authentication Platform

Anderson Fariña tagged a release candidate of Kotauth, a "docker-oriented full authentication service inspired by keycloak." It could fulfill a very real gap: authorization and authentication services tend to be very low-ceiling until they're not. If you've had to wrestle with Keycloak or are dreading the Auth0 renewal quote, this project might be very interesting.

By dreamreal|March 18, 2026

→

authentication authorization oauth2 oidc security