HN Reader

Transform Al assistants from a helpful tool into a highly efficient developer (github.com)

1 points by sahin 49s ago 0 comments

Waiting at Anchor (2024) (thebaffler.com)

1 points by anonymousab 3m ago 0 comments

Snail Can Regrow Its Eyes–Understanding How May One Day Help Humans W Injuries (smithsonianmag.com)

1 points by bookofjoe 4m ago 0 comments

Remove Old iMessage Attachments (github.com)

2 points by javast98 7m ago 1 comments

Trump's Bullying of India Is Straight from Xi's Playbook (bloomberg.com)

1 points by wslh 7m ago 1 comments

Palantir is well on its way to conquering Europe (euractiv.com)

1 points by akyuu 8m ago 0 comments

Builder.ai – The Greatest AI Scam in History [video] (youtube.com)

1 points by mgh2 12m ago 0 comments

Why Concerns About a Collapse in China's Demand Are Overblown (caixinglobal.com)

2 points by wslh 12m ago 0 comments

Helix Parallelism: Rethinking Sharding Strategies for Interactive LLM Decoding (research.nvidia.com)

1 points by rbanffy 13m ago 0 comments

Vulnerability Disclosure Policy[HHS] (hhs.gov)

1 points by rolph 14m ago 0 comments

Could a New Type of Parallelism Speed Up LLM Inference? – EE Times (eetimes.com)

1 points by rbanffy 14m ago 0 comments

Disrupted sleep damages blood vessels in brain and may increase dementia risk (temertymedicine.utoronto.ca)

2 points by gmays 15m ago 1 comments

Show HN: Runtime – skills-based browser automation that uses fewer tokens (github.com)

2 points by tito777 16m ago 0 comments

The Kafka Challenge – Translating the Inimitable (hedgehogreview.com)

1 points by rntn 16m ago 0 comments

AI's "Just Ship it." problem (leahtharin.com)

1 points by kiyanwang 18m ago 0 comments

Trump, the BLS, and Our Age of Choose-Your-Own-Reality Governance (derekthompson.org)

2 points by gamechangr 21m ago 0 comments

Starlink "Support"?

1 points by jtotheh 21m ago 1 comments

AI Has No Butt to Clench (bootstoobig.com)

2 points by cwrichardkim 24m ago 0 comments

ChatGPT 5 is slow and no better than 4

5 points by iwontberude 25m ago 3 comments

After 50 Years of Writing, Jamaica Kincaid Insists She's Still an Amateur (nytimes.com)

1 points by mitchbob 28m ago 1 comments

US licenses Nvidia to export chips to China after CEO meets Trump (ft.com)

3 points by ViktorRay 30m ago 0 comments

MapYourGrid (mapyourgrid.org)

2 points by protontypes 31m ago 0 comments

The Data in a Dino's Smile (nautil.us)

1 points by dnetesn 31m ago 0 comments

The Philosophy of Tyranny (nautil.us)

1 points by dnetesn 31m ago 0 comments

Data Replication Design Spectrum (2024) (transactional.blog)

1 points by motorest 32m ago 0 comments

US licenses Nvidia to export chips to China, official says (reuters.com)

4 points by giuliomagnifico 34m ago 0 comments

Kyrall – Automating design for the physical world (kyrall.com)

1 points by bmn__ 37m ago 0 comments

Are you missing threats in your chess games? (lichess.org)

1 points by anantdole 39m ago 0 comments

Barbican Centre (en.wikipedia.org)

1 points by taubek 41m ago 1 comments

Discover the Prusa Core One [video] (youtube.com)

1 points by lutusp 43m ago 1 comments

The Soft Architecture of Meaning: Language Against Entropy (medium.com)

1 points by pscoro 44m ago 0 comments

A CT scanner reveals surprises inside the 386 processor's ceramic package (righto.com)

21 points by robin_reala 44m ago 2 comments

Back to the Future: From Freeze-in-Place to Sliding Scale Chip Controls (rhg.com)

1 points by rbanffy 45m ago 0 comments

Don Knuth on ChatGPT(07 April 2023) (cs.stanford.edu)

12 points by b-man 48m ago 2 comments

New Talk Python Course: Just Enough Python for Data Scientists (training.talkpython.fm)

2 points by mikeckennedy 49m ago 1 comments

Why Your AI Never Works on the First Try (fluxus.io)

1 points by vinhnx 50m ago 0 comments

Music created with AI published ⁨on YouTube (ChatGPT and LLM local) (youtube.com)

1 points by fastestnotes 50m ago 0 comments

Microsoft sued for discontinuing Windows 10 support (courthousenews.com)

5 points by taubek 51m ago 0 comments

What Is a Pedagogic IDE? (parentheticallyspeaking.org)

1 points by azhenley 51m ago 0 comments

The first conference for TypeScript AI developers (mastra.ai)

1 points by BrandiATMuhkuh 52m ago 0 comments

Harvard had more money in BlackRock's Bitcoin ETF than Google shares (theblock.co)

3 points by kevkevin 55m ago 0 comments

Yamale – A Schema and Validator for YAML (github.com)

1 points by esher 57m ago 1 comments

Spikes in malicious activity precede new security flaws in 80% of cases (bleepingcomputer.com)

1 points by rbanffy 58m ago 0 comments

Show HN: Have kubectl diff use your custom YAML cleaning and comparison logic (github.com)

1 points by kwentine 58m ago 0 comments

A hybrid photonic-terahertz chip for communications and sensing (actu.epfl.ch)

2 points by rbanffy 58m ago 0 comments

Discord app tracking users across iOS installs

1 points by brie22 59m ago 3 comments

From Chrome renderer code exec to kernel with MSG_OOB (googleprojectzero.blogspot.com)

1 points by todsacerdoti 59m ago 0 comments

Dwarkesh to donate 250k to farmkind to help prevent cruelty in factory farming (dwarkesh.com)

1 points by CurrentB 1h ago 0 comments

Building a multiplayer Gameboy emulator with rollback netplay (blog.rekawek.eu)

1 points by t0mek 1h ago 0 comments

A Small European Nation Has a Big Explosions Problem (nytimes.com)

1 points by mikhael 1h ago 0 comments

Ask HN: What do you use for user management/IAM in your SaaS app?

1 sahilarora535 2 8/9/2025, 3:40:49 PM
I have been trying to figure out what that one(or more) IAM solution I can use for building a SaaS application with the following features:

1. True multitenancy - Concept of users/organisations 2. SAML/OIDC/Active Directory connect 3. Multi-factor authentication 4. RBAC/ABAC access control model 5. Session management 6. Social sign-on 7. Low management overhead 8. Modern UI/UX

I want to optimise for the lowest total cost of ownership over 3+ years, and aim for 10-50k users. The market is filled with IAM products, some of them are:

1. Keycloak (OpenSource) 2. Supertokens (OpenSource with paid plans) 3. Supabase (OpenSource with paid plans) 4. Authelia (OpenSource with paid plans) 5. Authentik (OpenSource with paid plans) 6. Logto (OpenSource with paid plans) 7. Clerk (Paid) 8. Zitadel (OpenSource with paid plans) 9. FusionAuth (OpenSource with paid plans) 10. Stytch (Paid) 11. WorkOS (Paid) 12. Ory Kratos (OpenSource with paid plans)

Every time I ask Gemini/Claude/ChatGPT/... to do a deep-research and give me one recommendation for a tool from here, I get a different answer, with different rationale. I have also read so many articles for both very high praise and very staunch criticisms of all of these tools. With so many options around, which one do you choose, why, and how is that decision coming along so far? Thank you.

Comments (2)

jelambs · 28m ago
Hi! I'm biased as one of the Stytch founders but wanted to share my POV in case it's helpful. As others mentioned, any of the open source options are not going to be low management overhead, but can be great in terms of cost and flexibility. I worked with Keycloak in a previous role and I think it's a really great option if you do go the open source route, just be prepared to spend time managing it.

> True multitenancy Many of the paid options you mentioned (workos, clerk, etc same goes for auth0) aren't actually multitenant, they've tacked on a concept of organizations to a user first data model. This presents some limitations as a result of users as the first class entity versus organizations, for example, membership across multiple organizations with different auth requirements (ie I can log into my personal with sign in with email/google but to log into a company account I need 2fa or SSO), multiple SSO connections per organization or a single SSO connection across multiple organizations (both common in enterprises where there's lots of M&A).

Happy to go into more detail on any of this or answer any specific questions you have!

canerdogan · 1h ago
Feels like you might be overthinking this. Most of the tools you listed already cover 90% of what you’re asking for. If you’re starting a SaaS from scratch and haven’t got a single user yet, sinking too much time into picking the “perfect” auth solution will slow you down more than making a “wrong” choice ever will. The bigger risk is not shipping at all.

I’ve worked with Supabase, Clerk, Keycloak, and Kratos on different projects. None of the open-source options truly deliver on “low management overhead”. You’ll always have to deal with updates, patches, and some manual babysitting.

If you refuse to compromise on your feature list, your realistic options shrink fast. In that case, Zitadel is a solid choice, but be ready for higher costs from day one. My advice is to trim the must-have list, go with a managed service, get real users, and revisit the decision when scale actually becomes a problem.