Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Categories

Announcements

Announcements regarding our community

Release

92
Topics

139
Posts

D

If you go look at https://fusionauth.io/docs/ and scroll to the bottom, you'll see a new section called 'Download docs'.

Screenshot 2025-05-19 at 9.19.23 AM.png

This takes you to fusionauth.io/docs/llms-full.txt which is all of our documentation (5MB!) in one file so you can upload it to your favorite LLM and query it.

Hope you all find it useful.
General Discussion

Connect with other community members to discuss CIAM, architecture, app development, and more.

568
Topics

1.9k
Posts

S

@mark-robustelli
Sometimes user sees this:

e964a7be-6e0c-4ea2-aba0-82adf7f37b26-image.png
Comments & Feedback

Share your tips and feedback with FusionAuth and the FusionAuth community.

86
Topics

284
Posts

T

@yuriy-barvenko Ok, I'm in the same boat, but I think it is most likely the database back-end. Reason being, I migrated our database from the docker instance to a stand alone instance of PostgreSQL and I immediately noticed some performance degradation.

I'm running version 1.55.1 of FusionAuth and PostgreSQL version 14. There are documented performance improvements in both FusionAuth and PostgreSQL. I'll be updating my version of PostgreSQL and will report back.
Q&A

You've got questions? We've got answers.

1.6k
Topics

4.9k
Posts

J

@mark-robustelli

Thank you for the quick reply.

By "Also start the authorization process there?" I mean manually open a new tab for my application and clicking on "Login" which redirects to "/oauth2/authorize". So the same login process initiated twice in different tabs, then introducing login credentials on the first one.

The debug doesn't shed any light I'm afraid. The problem seems to be the "saml.csrf" cookie changing it's value across tabs.
Blogs

Share and discuss community blog posts.

169
Topics

190
Posts

D

Community blog post: https://medium.com/@rsiva_nitric/fusionauth-as-an-alternative-to-auth0-for-robust-authentication-c8e865be86a1
Frequently Asked Questions (FAQ)

A read-only knowledge base of questions asked and answered about FusionAuth.

85
Topics

170
Posts

W

Yes—using FusionAuth access tokens to secure partner-facing APIs is a solid approach. The key is ensuring the tokens contain the right claims to enforce proper authorization for your endpoints.

Separating partners into a different tenant or application can improve security and simplify management. Different tenants fully isolate users and tokens, but would require duplicating application configs. Alternatively, you could keep partners in the same tenant and distinguish them via roles, claims, or separate applications.

If partners are accessing APIs server-to-server, the client credentials grant (Entities in FusionAuth) is the correct choice. Be sure to carefully scope each partner’s access to avoid over-permissioning.

More on these topics:
API Authorization with FusionAuth Tenants Overview JWT Anatomy Authorization Models
Jobs

Connect with people who can help you with FusionAuth projects.

13
Topics

15
Posts

D

https://www.upwork.com/freelance-jobs/apply/FusionAuth-NextAuth-application_~01c79f95fdbcb94d61/

Categories

Announcements

General Discussion

Comments & Feedback

Q&A

Blogs

Frequently Asked Questions (FAQ)

Jobs