Passwords are becoming obsolete, and the tech world is exploring various different technologies to allow users to log in without passwords. In a previous article, we discussed the perils of passwords and how FIDO2 can help us go passwordless. However, FIDO2 is no silver bullet as it comes with its fair share of caveats. Magic link is a viable alternative for all those who do not want to use FIDO2. This article discusses magic link in detail and demonstrates how we can use it with Asgardeo.

In our final year as undergraduates, we researched how to use human affect and behaviors to anticipate threats posed by other humans. We built a simple website that demonstrated the capabilities of the model we designed.

APIs should always be secure. In this article, I will show you how to invoke endpoints of SCIM, DCR, and Session Management APIs in Asgardeo. There are two ways to invoke APIs in Asgardeo.

Photo by Pixabay The world is progressing fast, especially when it comes to the tech industry. In the past, JavaScript was child’s play, condemned to lend some semblance of programmability to web pages. Today, it is taking us to space. At the start, WSO2 Identity Server was a fledgling identity solution reposed in your on-prem servers. Today, we are launching it to the cloud. Asgardeo has been a great achievement for our team.

WSO2 Identity Server provides many identity management workflows and password management workflows out of the box, e.g., self-registration, user invitations, password recovery, etc. However, it is not unusual to come across a situation where the workflow capabilities provided out of the box in the product, is not sufficient to fulfill your business requirement.

Photo by Micah Williams on Unsplash This article discusses a new feature which will be released for the public distribution of WSO2 Identity Server 5.12.0. This feature was developed to overcome the following scenario: You can refer to the following diagram for a deeper understanding of the above flow. This scenario can be experienced by anyone. As such, we introduced a new way to handle this scenario (as shown below) for the notification based password recovery flow.

Photo by Tima Miroshnichenko from Pexels

Are you someone who already has a legacy system in place and wants to migrate to a modern authentication system with Identity and Access Management (IAM) features? The first thing you need to consider is how you can use the existing legacy user store with this new system. Keep in mind that if the legacy user store uses an old security mechanism to store your data, we would recommend that you migrate to the WSO2 JDBC user store format or Active Directory (AD).