| ▲ | dzonga 7 hours ago | |||||||
only in javascript where auth is such a big issue. in rails you can use the rails 8 auth or a better alternative authentication-zero. before it was devise. java - spring security, shiro etc. but just complex things. alternatively - use services like fusionAuth | ||||||||
| ▲ | jamesjulich 6 hours ago | parent | next [-] | |||||||
It’s not that auth is unsolved in other languages/frameworks, but it’s often way too complex or configuration-heavy. If adding passkey support to my app is going to take 2 hours, that’s two hours I’m spending away from building my core product. For smaller projects, that’s not time that I could afford. For example, if I want to add passkeys to my .NET CORE app, this is the guide Microsoft provides: https://learn.microsoft.com/en-us/aspnet/core/security/authe... Contrast that to better-auth (which is 7 lines of code total in server changes, and virtually no change to client API usage): https://www.better-auth.com/docs/plugins/passkey For some projects, the flexibility of other solutions might be needed. But for ease-of-use and development speed, better-auth has been a clear winner for me. | ||||||||
| ||||||||
| ▲ | evv 7 hours ago | parent | prev | next [-] | |||||||
Why is auth "such a big issue" in JS? I've used a number of solutions but haven't had big issues with them. | ||||||||
| ||||||||
| ▲ | kbumsik 4 hours ago | parent | prev [-] | |||||||
In case if you don't know, Auth.js is not a frontend-only framework. It uses a backend server to make it secure. So it basically has no difference from the alternatives you mentioned. | ||||||||