Logto blog

Discover Logto and explore plenty of resources on authentication, authorization, identity management, open standards (OAuth, OpenID Connect, SAML), and more.

All posts

Product
- Captcha
- Security
CAPTCHA provider buyer’s guide 2025
Learn how does modern CAPTCHA works. Compare Google reCAPTCHA, Cloudflare Turnstiles, and more providers from features, pricing, and integration tips.
7/16/20256 min read
CAPTCHA provider buyer’s guide 2025
Product
- saas
- environment
- configuration
Why I said "no" for a year: rethinking dev-to-prod environment promotion
How we learned that environment isolation doesn't mean configuration isolation, and why that matters for developer-focused SaaS.
7/10/20253 min read
Why I said "no" for a year: rethinking dev-to-prod environment promotion
Product
- postmortem
Postmortem: Logto auth service outage
On June 12, 2025, Logto services on `logto.app` were briefly disrupted by a Cloudflare outage affecting request routing. The issue was resolved quickly, with no impact on data security or core services.
6/13/2025less than a minute read
Postmortem: Logto auth service outage
Product
- Magic link
- Passwordless
- Authentication
- Invitation
Magic link authentication
Learn to implement magic links for passwordless sign-in, invitation-only registration, and organization member invites using one-time tokens.
6/6/20256 min read
Magic link authentication
Product
- Security
- IAM
IAM security: from fundamentals to advanced protection (Best practices 2025)
Master IAM security threats, essential features, and modern best practices. Discover how Logto’s developer-first IAM platform implements secure authN and authZ.
5/29/20254 min read
IAM security: from fundamentals to advanced protection (Best practices 2025)
Product
- e-commerce
- identity
- gobal
Behind the E-commerce boom: Why auth and identity management matters
Global e-commerce brings complex identity challenges. Managing identity is now key to growth, security, and compliance. This article covers essentials like SSO, multi-identifier sign-ups, MFA, and CAPTCHA.
5/28/20253 min read
Behind the E-commerce boom: Why auth and identity management matters
Product
- Logto OSS
- Logto Cloud
Auth provider: Logto OSS vs. Logto Cloud
Looking for an auth provider? Logto lets you choose between a managed SaaS (SOC2/HIPAA compliant, instant scaling) or a self-hosted open-source solution. Free trial & easy migration.
5/20/20253 min read
Auth provider: Logto OSS vs. Logto Cloud
Product
- ai
- doc
Smarter with AI: Logto’s latest with Inkeep
We’ve upgraded Logto’s docs with AI to help you find answers more efficiently. You can access it across multiple channels—including our documentation site, Logto Cloud, and the Discord community.
5/12/20252 min read
Smarter with AI: Logto’s latest with Inkeep
Product
- open-source
- auth
- milesone
Logto reaches 10,000 GitHub stars and 1 million identities: The open foundation for identity in the AI era
We’re deeply grateful to have you on this journey. Join us in celebrating Logto’s milestone achievements!
5/8/20253 min read
Logto reaches 10,000 GitHub stars and 1 million identities: The open foundation for identity in the AI era
Product
- security
- auth
- email
- disposable email
Disposable emails: What they are, Why they exist, and how to handle them in your app
Learn what disposable emails are, why they exist, the risks they pose to applications, and the key strategies you can use to detect and block them for stronger security and cleaner user data.
4/28/20253 min read
Disposable emails: What they are, Why they exist, and how to handle them in your app
Product
- iam
- auth solution
What makes a good identity and access management solution
Explores the key elements of an effective IAM solution including user experience, security, integration capabilities, documentation, cost-effectiveness, support, and future readiness based on Logto's experience serving developers.
4/28/20256 min read
What makes a good identity and access management solution
Product
- japan
- logto-cloud
- region
Announcing the Logto Cloud Japan region
Logto Cloud now supports a new region in Japan, offering low-latency access and local data residency compliance for users in the Asia-Pacific region.
4/22/2025less than a minute read
Announcing the Logto Cloud Japan region
Product
- AI
- MCP
- Agent
- IdP
What you need to have in place for AI Agent and MCP Integration for your product
In this piece, we explore the latest AI breakthroughs that underscore the urgency of secure agent and MCP integration. We highlight OAuth-based authentication as an important measure for protecting user credentials and explain how Logto can help your product serve as both an MCP server and an identity provider in the rapidly growing AI ecosystem.
4/2/20254 min read
What you need to have in place for AI Agent and MCP Integration for your product
Product
- Firebase Auth
- Pricing
2025 Firebase Authentication’s latest pricing explained and the best alternatives
This article provides an overview and breaks down the key details of Firebase Authentication. It covers what Firebase Auth is, a summary of its pricing, and the best alternatives to Firebase Auth.
3/20/20256 min read
2025 Firebase Authentication’s latest pricing explained and the best alternatives
Product
- auth
- agent
- agent auth
AI agent auth: use cases and identity needs
2025 is the year of AI. As LLMs and agent experiences evolve, new challenges in authentication and authorization emerge. This article explores AI agent interactions, highlighting key security and authentication scenarios.
3/17/20256 min read
AI agent auth: use cases and identity needs
Product
- oss
- IAM
- SSO providers
Top 5 Open Source Identity and Access Management (IAM) providers 2025
Compare features, protocols, integrations, pros, and cons for Logto, Keycloak, NextAuth, Casdoor, and SuperTokens to find the best OSS fit for your authentication and authorization needs.
3/12/20259 min read
Top 5 Open Source Identity and Access Management (IAM) providers 2025
Product
- Region
- Data
- Security
Protect your identities in local regions and dedicated computing resources
In this article, we’ll discuss when you might need to store your identities in local regions and how Logto can help.
2/26/20253 min read
Protect your identities in local regions and dedicated computing resources
Product
- Personal access token
- Authentication
What is personal access token (PAT)? A more secure API token
Explain how personal access tokens (PATs) work, when to use them, how to support API authentication in your services, and how they differ from API keys, API tokens, bearer tokens, OAuth tokens, and passwords.
2/20/20257 min read
What is personal access token (PAT)? A more secure API token
Product
- impersonation
- ai
- authentication
- authorization
What is impersonation in cybersecurity and identity management? How can AI agents use it?
Learn how impersonation is used in cybersecurity and identity management, and how AI agents can use this feature.
2/19/20255 min read
What is impersonation in cybersecurity and identity management? How can AI agents use it?
Product
- soc2
- security
- compliance
Logto is now SOC 2 Type II compliant!
Logto is now SOC 2 Type II compliant, proving our commitment to security.
2/16/2025less than a minute read
Logto is now SOC 2 Type II compliant!

Logto blog

Featured posts

Logto product updates

RBAC in practice: Implementing secure authorization for your application

Build a multi-tenant SaaS application: A complete guide from design to implementation

All posts

CAPTCHA provider buyer’s guide 2025

Why I said "no" for a year: rethinking dev-to-prod environment promotion

Postmortem: Logto auth service outage

Magic link authentication

IAM security: from fundamentals to advanced protection (Best practices 2025)

Behind the E-commerce boom: Why auth and identity management matters

Auth provider: Logto OSS vs. Logto Cloud

Smarter with AI: Logto’s latest with Inkeep

Logto reaches 10,000 GitHub stars and 1 million identities: The open foundation for identity in the AI era

Disposable emails: What they are, Why they exist, and how to handle them in your app

What makes a good identity and access management solution

Announcing the Logto Cloud Japan region

What you need to have in place for AI Agent and MCP Integration for your product

2025 Firebase Authentication’s latest pricing explained and the best alternatives

AI agent auth: use cases and identity needs

Top 5 Open Source Identity and Access Management (IAM) providers 2025

Protect your identities in local regions and dedicated computing resources

What is personal access token (PAT)? A more secure API token

What is impersonation in cybersecurity and identity management? How can AI agents use it?

Logto is now SOC 2 Type II compliant!