Upgrade to Pro — share decks privately, control downloads, hide ads and more …

4 Identity Essentials for Scaling SaaS in Large...

apidays
PRO
April 15, 2025
Programming
0
4

4 Identity Essentials for Scaling SaaS in Large Orgs by Daizen Ikehara (Auth0)

4 identity factors you didn't know you needed to support large organizations in your SaaS
Daizen Ikehara, Principal Developer Advocate at Auth0

apidays Singapore 2025
Where APIs Meet AI: Building Tomorrow's Intelligent Ecosystems
Marina Bay Sands Expo & Convention Centre
April 15 & 16, 2025

------

Check out our conferences at https://www.apidays.global/

Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8

Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io

Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/

apidays
PRO

April 15, 2025
Tweet

More Decks by apidays

See All by apidays
How APIs can make - or break - trust in your AI by Shameek Kundu (IMDA)
apidays
PRO
0
4
From API Intelligence to API Governance by Harsha Chelle (Treblle)
apidays
PRO
0
5
Trustworthy Generative AI: The Role of Observability and Guardrails by Santanu Dey (OCBC)
apidays
PRO
0
4
Generative AI Landscape Building a Modern Data Strategy by Senthil Kumar (World Vision Intl)
apidays
PRO
0
4
What exactly are AI Agents by Aki Ranin (Earthshots Collect
apidays
PRO
0
5
The API Playbook for AI by Shin Wee Chuang (PAND AI)
apidays
PRO
0
5
Secure, Govern and Manage APIs to fuel your AI Initiatives (MuleSoft from Salesforce)
apidays
PRO
0
5
Building Finance Innovation Ecosystems by Umang Moondra (APIX)
apidays
PRO
0
3
Streaming Lakehouse with Kafka, Flink and Iceberg by Zabeer Farook (CACIB)
apidays
PRO
0
4

Other Decks in Programming

See All in Programming
「”誤った使い方をすることが困難”な設計」で良いコードの基礎を固めよう / phpcon-odawara-2025
taniguhey
0
110
5年間継続して開発した自作OSSの記録
bebeji_nappa
0
170
タイムゾーンの奥地は思ったよりも闇深いかもしれない
suguruooki
1
550
DomainException と Result 型で作る型安全なエラーハンドリング
karszawa
0
890
AI Coding Agent Enablement - エージェントを自走させよう
yukukotani
13
5.8k
趣味全開のAITuber開発
kokushin
0
190
Devin入門と最近のアップデートから見るDevinの進化 / Introduction to Devin and the Evolution of Devin as Seen in Recent Update
rkaga
9
4.7k
PHPで書いたAPIをGoに書き換えてみた 〜パフォーマンス改善の可能性を探る実験レポート〜
koguuum
0
130
データベースエンジニアの仕事を楽にする。PgAssistantの紹介
nnaka2992
9
4.5k
Bedrock×MCPで社内ブログ執筆文化を育てたい!
har1101
6
890
SQL Server ベクトル検索
odashinsuke
0
170
Coding Experience Cpp vs Csharp - meetup app osaka@9
harukasao
0
730

Featured

See All Featured
The Cult of Friendly URLs
andyhume
78
6.3k
Learning to Love Humans: Emotional Interface Design
aarron
273
40k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
331
21k
How GitHub (no longer) Works
holman
314
140k
Typedesign – Prime Four
hannesfritz
41
2.6k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
119
51k
Why Our Code Smells
bkeepers
PRO
336
57k
Optimizing for Happiness
mojombo
377
70k
How to Ace a Technical Interview
jacobian
276
23k
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
656
60k
Docker and Python
trallard
44
3.3k
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
3.8k

Transcript

  1. @neri78 4 Identity Factors You Didn’t Know You Needed to

    Support Large Organizations in Your SaaS Daizen Ikehara | @neri78

  2. @neri78 👋 Hi, I am Daizen! X (Twitter): @Neri78 Bluesky:

    neri78.bsky.social LinkedIn: daizenikehara GitHub: http://github.com/neri78 Daizen Ikehara Principal Developer Advocate

  3. @neri78

  4. @neri78 Speed to Market is a key

  5. @neri78 When your SaaS grows, you need to support various

    users

  6. @neri78 Variety of Users Individual Users Group Users Enterprise Users

    (Large Organizations)

  7. @neri78 Requirements are different… Ease of use Collaborations Auditing User

    Onboarding Subscription Management SSO Access Control User Management Branding Security

  8. @neri78 Is your SaaS

  9. @neri78 What kind of SaaS to “support large organizations” ?

    Business to Consumer (B2C) Business to Business (B2B) Business-to-Business-to-Consumer (B2B2C) Business-to-Business-to-Employee (B2B2E) Who uses? Who buys? SaaS Apps

  10. @neri78 4 Identity Factors To Support Large Organizations Multi-tenancy Authorization

    Security Enterprise Federation

  11. @neri78 01. Multi-tenancy • Common approach to support multiple customers

    • Each customer has their users • Experience should be isolated • Customized settings and data Data Data Data Compute Datastore Customer A (Tenant A) Customer B (Tenant B) Customer C (Tenant C)

  12. @neri78 02. Authorization • Who’s allowed to do What? ◦

    Administrators ◦ Members ◦ … and Others • What is the best Authorization model for your SaaS? ◦ Role-Based (RBAC) ◦ Attribute-Based (ABAC) ◦ Relationship-Based (ReBAC)

  13. @neri78 ReBAC quick intro https://zanzibar.academy/ • Define relationship model ◦

    Doc ◦ Owner ◦ Editor ◦ Viewer • Add Tuple on each operation ◦ Carl is a viewer of doc: slides • Query the model ◦ Is Carl a editor of doc:slides?

  14. @neri78 03. Enterprise Federation • How users will prove their

    identity? • “bring your own identity” is a must • How to manage Onboarding and Offboarding? • What the scenario could happen if you do not have…?

  15. @neri78 04. Security • What additional security measures are required

    for large organizations? ◦ Email Verification ◦ MFA / risk-based MFA ◦ MFA factors ◦ Timeouts ◦ Suspicious IPs (Allowed IPs) ◦ Bot detection • Auditing

  16. @neri78

  17. @neri78 Delegate administrative settings to your customer Admins

  18. @neri78 SaaStart: Reference B2B SaaS App with Auth0 for delegated

    Administrations https://a0.to/saastart https://a0.to/saas-code

  19. @neri78 Questions?

  20. @neri78 Thank you! @neri78