A robust authentication system can be a powerful solution, but it also raises some intriguing questions: how can we accurately estimate the real cost of implementation when scaling up to millions of users—say, 10 million? And beyond the financial aspect, what kind of infrastructure would truly be required to sustain usage at that magnitude without compromising security or performance?
Neat approach but allowing services to mint tokens for others seems weird. Multi-audience tokens are discouraged and break certain scenarios, what if service B uses encrypted tokens? Does it now need to share its private key with service A? Token exchanges exist to allow service A to get a token for service B from a token service without having to have multiple audiences and following any configuration for service B.
Uau, this is a beautifully crafted piece. I'm truly grateful for the opportunity to read it. I’d love to explore the ideas on how this authentication system could be adapted for other websites and regions, especially to enhance centralized human experiences globally. Thank you for sharing this!
Great to have a external IDP fallback, but What happen if Dex is out of order?
How does they manage the fine grain permissions workflow?
A robust authentication system can be a powerful solution, but it also raises some intriguing questions: how can we accurately estimate the real cost of implementation when scaling up to millions of users—say, 10 million? And beyond the financial aspect, what kind of infrastructure would truly be required to sustain usage at that magnitude without compromising security or performance?
Neat approach but allowing services to mint tokens for others seems weird. Multi-audience tokens are discouraged and break certain scenarios, what if service B uses encrypted tokens? Does it now need to share its private key with service A? Token exchanges exist to allow service A to get a token for service B from a token service without having to have multiple audiences and following any configuration for service B.
Uau, this is a beautifully crafted piece. I'm truly grateful for the opportunity to read it. I’d love to explore the ideas on how this authentication system could be adapted for other websites and regions, especially to enhance centralized human experiences globally. Thank you for sharing this!