Logto blog
Discover Logto and explore plenty of resources on authentication, authorization, identity management, open standards (OAuth, OpenID Connect, SAML), and more.
Changelogs
- release
Logto product updates
Time for a new Logto release! This month, we are bringing new features such as Arabic Language translation and full RTL support, personal access token (PAT), configurable first-screen, as well as various improvements and bug fixes.
All posts
- Read more
Tech
- oidc
- oauth
- authentication
- authorization
- jwt
The complete guide to integrating an OIDC server into your project
Learn the best practices of integrating an OIDC (OpenID Connect) server into your project and understand how components interact with each other on the stage.
- Read more
Tech
- SAML
- SSO
- authentication
SAML security cheat sheet
A quick reference guide to the Security Assertion Markup Language (SAML) and its security features. Understand key terms, implementation tips, and best practices for securing SAML-based authentication and authorization in enterprise environments.
- Read more
Tutorial
- sign-in experience
- organization
- app
- customization
How can I customize the sign-in experience for each app or organization?
How to set up customized sign-in experiences for multi-app and multi-tenant businesses.
- Read more
Tech
- oauth 2.0
- token introspection
- access token
- refresh token
- opaque token
OAuth 2.0 token introspection
This article explores OAuth 2.0 token introspection, a method that allows a protected resource to query the authorization server for token metadata, determining whether an access or refresh token is valid.
- Read more
Tech
- chatgpt
- ai
- prompt
- i18n
Long-context JSON translation with ChatGPT
Learn how to use the latest ChatGPT model and JSON mode to translate a JSON object with long context and stream the output back to JSON.
- Read more
Tech
- remove if-else
- code optimization
- clean code
- interface-oriented programming
- conditional logic
3 powerful coding techniques to remove messy conditionals
Introduces three powerful coding techniques to optimize and simplify complex conditional structures, improving code quality and maintainability.
- Read more
Changelogs
- release
Logto product updates
Time for a new Logto release! This month, we are bringing new features such as Arabic Language translation and full RTL support, personal access token (PAT), configurable first-screen, as well as various improvements and bug fixes.
- Read more
Tutorial
- github actions workflow
- CI/CD
- automated deployment
- streamline-deployment
- bring your own UI
- custom sign-in UI
- @logto/tunnel
Automate your custom sign-in UI deployment with GitHub Actions workflow
Let's show you how to automate the deployment of your custom sign-in UI to Logto Cloud in your devops pipeline with a GitHub Actions workflow.
- Read more
Product
- google one tap
- experience
- account linking
- direct sign in
Set up authentication and maximize Google login conversions with 6 configurations
Learn 6 easy tricks to improve user conversions, including Google One Tap, account linking, embedded sign-in, and more. See real results like 2x increased sign-ups.
- Read more
Tech
- oidc
- oauth
- token-exchange
- openid
Understanding token exchange in OAuth/OIDC
Token exchange is an OAuth extension enabling trusted clients to obtain new tokens without user interaction, useful for impersonation, automation, cross-system integration, and token migration in various scenarios.
- Read more
Tech
- HTTP protocol
- WebSocket protocol
- Web application
- TCP
- Client server communication
HTTP vs. WebSocket
This article compares HTTP and WebSocket protocols, explaining their key differences, features, and ideal use cases. It provides developers with insights for choosing the right protocol for their web applications, contrasting HTTP's request-response model with WebSocket's real-time, bidirectional communication capabilities.
- Read more
Product
- product
- developers
- growth
5 go-to-market lessons I learned from driving a developer-led growth product
Lessons and practices learned in driving Logto’s growth with developers.
- Read more
Tech
- animation
- motion
- user experience
- react
Why GitHub's loading progress bar looks good and how to build it
We are going to discuss the user experience of GitHub's loading progress bar and build a similar one in React.
- Read more
Tech
- commit message
- conventional commits
- git commit
- commitlint
Conventional commits won't save your commit messages
Explore why simply following conventional commits isn't enough to write good commit messages, and introduce key thinking strategies to improve your development process and naturally create meaningful commits.
- Read more
Tech
- oidc
- oauth
- jwt
- opaque token
Opaque token vs JWT
Understand the differences between opaque tokens and JWTs, their use cases, and how they are validated in OIDC-based systems.
- Read more
Tech
- social meida
- open graph
- open standard
How to set Open Graph and Twitter card metadata for your website
Open Graph and Twitter (now X) card metadata are essential for sharing your website on social media. They will help you to show beautiful previews of your website and attract more attention.
- Read more
Tutorial
- custom-ui
- bring-your-own-ui
- custom-sign-in
- custom-auth-flow
Bring your own sign-in UI to Logto Cloud
This tutorial will guide you through the process of creating and deploying your own custom sign-in UI to Logto Cloud.
- Read more
Tech
- jwt
- authentication
- security
- OIDC
When should I use JWTs?
A comprehensive guide on the pros and cons of using JWTs for authentication, with emphasis on auth provider services like Logto.
- Read more
Tech
- remark
- mdx
- reading-time
- esm
Create a remark plugin to extract MDX reading time
A guide to create a remark plugin to make the reading time data available when importing MDX files as ES modules.
- Read more
Product
- logto
- pricing
- add-on
- explanation
- example
Logto add-on pricing: A simple explanation
In this article, we will explain the add-on pricing in Logto in a simple way with examples.