Topics tagged with limits

Limiting sessions to one IP address

dan — Invalid Date

No, this isn't currently possible.

I think that would fall into the threat detection bucket of features we are planning. Feel free to add any notes, comments or suggestions here: https://github.com/FusionAuth/fusionauth-issues/issues/905

Limit on tenants

dan — Invalid Date

No hard limits, we have some clients running somewhere between 5-10k.

If you encounter any performance degradation, you can open a GitHub issue and we will take a look. We do have some work in plan to improve the UI for this type of scale.

How many applications and tenants can I have in FusionAuth?

dan — Invalid Date

Ah, yes, thanks for explaining.

Yes

You have two options

use the API to integrate with the current login/reg flow with FusionAuth. This lets you keep your existing html pretty much untouched, you're just calling out to FusionAuth instead of the database. remove them and use the FusionAuth provided pages with OIDC. This lets you use the theming and localization capabilities of FusionAuth, including super simple social signon.

It's your choice based on what your needs are, either way will work.

I'd only recommend using SAML if you have an application which only supports SAML, not OIDC.

You'll also want to make sure that when someone registers with one of your applications in FusionAuth, they register with all three. I'd probably use a webhook to ensure that.

Restrictions on redirect URIs?

dan — Invalid Date

Support for wildcards in redirect URIs just landed in 1.43.

We don't recommend using these because they are against the OAuth specification (you could look at using the state parameter instead).

But we listened to the community feedback on this issue: https://github.com/FusionAuth/fusionauth-issues/issues/437 and implemented it.

It is still being documented, but you can read about it here: https://fusionauth.io/blog/2023/02/16/announcing-fusionauth-1-43#support-for-wildcards-in-redirect-urls

Hope that helps, @davidmw !

How large can the data field be for any of the FusionAuth resources?

dan — Invalid Date

If you're using PostgreSQL the size is essentially unlimited. With MySQL it is 16 MB.

There are few exceptions to this rule where we may be using a 64 KB column if you're on MySQL.

I wouldn't recommend storing that much data however. If you're using Elasticsearch, the custom data on the User will be indexed, and Elasticsearch will eventually hit a limit as well.