Okta

Okta

Utilities / Application Utilities / Identity Verification as a Service
Needs advice
on
KeycloakKeycloak
and
OktaOkta

Hello,

I'm trying to implement a solution for this situation:

There is a restaurant in which users can access RestAPI, using Google, Facebook, GitHub. There is even the possibility to login inside using the SPID authentication. In the first case I was considering Keycloak as a better solution for this case, but then i've read about Okta and its pros.

I cannot understand reading and searching on Google if SPID authentication is supported by OKTA. Looks like to be, because it should be using SAML, but I haven't found a clear solution.

READ MORE
8 upvotes·95.5K views
Replies (1)
Recommends
on
Auth0
Okta

Hi Dario,

I would advise going with okta or Auth0 due to their constant evolving product nature and the support they provide.

Regarding SPID authentication, I think you should be able to set up it up as Identity Provider inside Okta or Auth0 I will suggest getting a free developer tenant via https://developer.okta.com/signup/ or https://auth0.com/signup and trying to set up the the Identity Provider. Once you test and confirm, you can decide to proceed further.

Let me know if any further input is required.

READ MORE
19 upvotes·10.5K views
Needs advice
on
KeycloakKeycloak
and
OktaOkta

I want some good advice on which one I should prefer. (Keycloak or Okta) Since Keycloak is open source, it will be our first preference, but do we face some limitations with this approach? And since our product is SAAS based and we support the following authentications at present. 1. AT DB level 2. 3rd part IDP providers 3. LDAP/AD...

READ MORE
6 upvotes·249.6K views
Replies (2)
Software Engineer at Newfold Digital·
Recommends
on
Keycloak

We have used Keycloak extensively and I can confidently say that it supports all the features that you have listed. Moreover, Keycloak also supports extension with SPIs which even allowed us to develop some very customised authentication flows which wouldn’t be possible with most IDPs. Unless you really need that enterprise support provided by Okta and you can manage Keycloak on your own, you can easily go with Keycloak and save some cash.

Keycloak also runs well on a container. You could use the official image from JBoss’s DockerHub or the one that’s made by Bitnami. The Bitnami one offers some extra options. Helm Charts are available from Codecentric and Bitnami (for the JBoss and Bitnami version, respectively), so it’s pretty easy to get them running on your Kubernetes cluster, if you have one to use.

READ MORE
4 upvotes·1 comment·3.3K views
Nilesh Ratta
Nilesh Ratta
·
September 3rd 2021 at 5:02PM

Thanks a lot for your kind advice. Will definitely consider your points .

And will definitely take ur help if I got stuck in implementation or even I need some architecture level help

·
Reply
Recommends
on
Keycloak

I have only limited experience with both. Okta from trying to integrate with it and Keycloak from using it in my integration testing (it thankfully runs well inside a Docker container).

I would hesitate to disqualify Keycloak because it is "open source". E.g. I was very surprised when I learned that Okta's SAML implementation does not currently support importing SP metadata (in fact, when using their developer portal you'll notice that the SAML stuff is hidden away inside their legacy UI). My first attempt at integrating with Okta involved what turned out to be a sub-par SAML library and asking Okta for some guidance was an exercise in futility. I.e. to me as a developer the Okta option offers very few advantages. (but for a network admin the story might be different)

At the moment I'm involved in a project that employes OpenIdDict since we have additional customization needs (and we use dotnet). There are many ways to skin this particular cat. :)

READ MORE
4 upvotes·1 comment·3.5K views
Nilesh Ratta
Nilesh Ratta
·
September 3rd 2021 at 5:00PM

Thanks a lot for your kind advice. Will definitely consider your points .

And will definitely take ur help if I got stuck in implementation or even I need some architecture level help

·
Reply

Hey all, We're currently weighing up the pros & cons of using Firebase Authentication vs something more OTB like Auth0 or Okta to manage end-user access management for a consumer digital content product. From what I understand so far, Something like Firebase Auth would require more dev effort but is likely to cost less overall, whereas OTB, you have a UI-based console which makes config by non-technical business users easier to manage. Does anyone else have any intuitions or experiences they could share on this, please? Thank you!

READ MORE
5 upvotes·1.1M views
Replies (1)

Hey, we've had implemented Firebase auth in less than two days. Their doc is amazing and I don't understand why you think that it will take more effort than Auth0. Prices are really good (free, except if you use more than 10k/sms month).

READ MORE
2 upvotes·9K views