Integrating to Facebook, Google, and other social providers can be a pain. Do you want to deal with Facebook and Google tokens and their idiosyncrasies every time you build a new app? Probably not.

We at Stormpath frequently get requests to automate social login and integration for our customers so that they don’t have to build it themselves. Well, we’ve done that— Hooray! This post is about some of the design challenges and solutions we worked through while implementing this feature for our customers.

Read more »

Building a multi-tenant SaaS isn’t easy, but in a world where your customers expect on-demand services and your engineering team wants a central codebase, multitenancy offers tremendous value. 

The hardest part is user management. Multi-tenant applications come with special user considerations:

  • How will tenants be represented in the data model?
  • How will users be created?
  • How will tenant users be kept secure and separate from other tenants?

As you might have guessed, Stormpath’s data model natively supports multi-tenant user management out-of-the-box. You don’t have to worry about building or managing data partitions yourself, and can focus on building your app’s real features. 

But, how do you build it? Read more »


This article originally appeared on the HiveMQ blog. A huge ‘Thank You’ to their team for the plugin and writeup!

HiveMQ Logo

Authentication and authorization are key aspects for every Internet of Things application. When using MQTT, topic permissions are especially important for most public-facing MQTT brokers. Learn how you can use Stormpath with HiveMQ to set up fine grained security for your MQTT service in minutes.

For the impatient: You can download the Stormpath HiveMQ plugin here.

Read more »

Randall - Developer Evangelist at Large

As a Developer Evangelist at Stormpath, one of my jobs is to help increase developer adoption of our User Management API.

In this post, I’ll share my personal goals with you, what I’m doing to reach them, and what I’m learning (as a series!). If you’re interested in developer evangelism, the inner workings of a start-up, growing your developer-centric business, or just excited to learn more about Stormpath, this series of post is for you.

Read more »

Flask App in 30 minutes

Flask is an awesome web framework for Python. It’s minimal, it’s simple, and best of all: easy to learn.

Today I’m going to walk you through building your very first Flask web application! Just like the official Flask tutorial, you’ll be building your very own micro blog: Flaskr. Unlike the official Flask tutorial — you’ll be speeding things up by using Stormpath to create and manage user accounts and data. This will dramatically speed up the development process!

Let’s get right to it.

Read more »

Surprised Stick Figure

UPDATED April 2, 2014: This was an April Fools Joke. Read. Laugh. Learn. And don’t store your passwords in plain-text. It’s a horrible idea.

As Stormpath is a security company, specifically focusing on user management — we often get questions about password hashing, database security, etc. Since we get asked about password hashing so frequently, I figured I’d take a few moments to disclose my full thoughts on the subject as it stands today.

Read more »

Build apps like Voltron! What’s with the obsession over building every component of their application themselves, nowadays? I can’t tell you how many times I’ve seen people building their own analytics service. It’s crazy! This problem, and many like it, has been solved a million times over.

Building every part of your application yourself is almost always a bad idea! It creates a maintenance nightmare, takes a ton of time, and your customers (or users) almost never care.

There’s a better way.

Read more »

Stormpath Active Directory Integration

Stormpath can now connect your applications to an unlimited number of new and existing Active Directory servers. The integration uses a lightweight, configurable agent to securely mirror AD Accounts and Groups to a Stormpath Directory – making it an ideal solution for plugging into your directory services from the cloud.

Read more »

Programming!!! Here at Stormpath, we just finished our very first internal hackathon (StormHack 0x00). It was a lot of fun. In this article I’ll walk you through what we did — what worked, what didn’t, and most importantly: how everything went!

For a while, we had wanted to throw an internal hackathon to work on fun projects, but because of startup time constraints, we just never got around to it. After deciding on a date, however, it was easy to organize with only about two weeks advance notice. In the end, everyone had a blast, and we made a lot of progress!

Read more »

Stormpath Node SDK v.1

Did you know Node.js is one of the top communities using Stormpath? After many requests, we’re happy to welcome our new server-side JavaScript overlords with the Stormpath Node SDK v.01.

The new SDK helps Node devs build out production-grade user management and launch their applications faster. A few of the common issues with authentication in Node, now solved by the SDK:

  • Where user authentication and authorization should live in applications built with a frontend MVC framework (e.g. Angular) and Node on the backend
  • Keeping up with crypto advancements is a pain and frameworks aren’t always up-to-date on best practices
  • User data should be extendable and not tied to a single app
Read more »

Full User Management API - No Credit Card Required

Try It For Free