I wanted to share this recently published blog, which explores decoupling authentication and authorization in SaaS applications in detail. The authors dissect the importance of decoupled systems for scalability and security, provide insights into leveraging IDaaS solutions, and debate coupled vs. decoupled AuthN/AuthZ.

If you're involved in developing or securing SaaS platforms, I highly recommend you go through this blog (it’s a thread of 3 pieces, with only the first one being published so far). Explore the strategic integration of Microsoft Entra External ID with Cerbos for streamlined SaaS authentication and authorization, offering developers the flexibility of decoupled AuthN/AuthZ with the convenience of centralized policy management. This collaboration empowers developers to fortify app security while adapting to changing roles and attributes, ensuring accurate access decisions and compliance with evolving business needs. I found the section on potential challenges with decoupled AuthN/AuthZ particularly candid and the discussion around policy management enlightening.

I would love to hear my developer community thoughts on this.

I'm a big fan of cerbos :D

Hoping you see this ...

I can't reply to you elsewhere, and you don't have contact details in your profile page, but I suspect you previously haven't been able to submit links because you are consistently posting dev.to links, and I suspect dev.to is on the "Dead On Arrival" list.

Email hn@ycombinator.com for more information.

I'm glad to hear this.