Logto blog

Discover Logto and explore plenty of resources on authentication, authorization, identity management, open standards (OAuth, OpenID Connect, SAML), and more.

All posts

  • Cover
    HTTP status code 401 or 403? How authentication and authorization errors differ
  • Cover
    SSO vs SAML, explained for everyone
  • Cover
    What is one-time password (OTP)?
  • Cover
    JWT signing algorithms overview
  • Cover
    JWT vs Session authentication
  • Cover
    What is OIDC: From why we need it to how it works
  • Cover
    SAML vs OIDC
  • Cover
    How to implement two-factor authentication (2FA) in Node.js with authenticator apps
  • Cover
    What is client assertion in OAuth 2.0 client authentication?
  • Cover
    Multi-tenancy implementation with PostgreSQL: Learn through a simple real-world example
  • Cover
    What is AuthZ (Authorization)?
  • Cover
    Understand IAM, OAuth, OpenID Connect, SAML, SSO, and JWT in one article
  • Cover
    How to fix cookie size exceeded error by splitting cookies
  • Cover
    Implementing OIDC logout and session management: A complete guide
  • Cover
    How does one-time-password (OTP) work?
  • Cover
    Secure cloud-based applications with OAuth 2.0 and OpenID Connect
  • Cover
    IdP-initiated SSO vs SP-initiated SSO
  • Cover
    Understanding CSRF in depth
  • Cover
    What is XML?
  • Cover
    The complete guide to integrating an OIDC server into your project