Best of AuthenticationDecember 2025

  1. 1
    Article
    Avatar of selfhstselfh.st·20w

    FileBrowser Quantum Hits Stable!

    FileBrowser Quantum, a fork of the original FileBrowser project, has released its first stable version after years of development. The project now offers two release tracks: stable for general users and beta for early adopters. Key features include OnlyOffice integration, two-factor authentication, OIDC single sign-on, granular access controls, and advanced file sharing options. The application supports multiple platforms including Windows, Linux, macOS, FreeBSD, and Docker. While it indexes filesystems for fast search (which can increase memory usage), this can be disabled. The project is actively maintained by two core contributors and welcomes community involvement.

  2. 2
    Article
    Avatar of neontechNeon·16w

    Stop Mocking Auth (It’s Breaking Your Tests)

    Mocking authentication in tests creates false confidence by skipping critical failure points like password verification, database constraints, and session management. Real auth testing is traditionally difficult due to shared state and slow database provisioning. Database branching offers a solution by creating isolated, copy-on-write database instances with separate auth endpoints for each test run, enabling fast, isolated testing against real authentication flows without test collisions or production data pollution.

  3. 3
    Article
    Avatar of auth0Auth0·20w

    Next.js 16: What’s New for Authentication and Authorization

    Next.js 16 introduces three key changes for security: renaming middleware.ts to proxy.ts to clarify its role as lightweight routing logic, making components dynamic by default with opt-in caching to prevent accidental data leaks, and adding the updateTag() API for immediate cache invalidation after permission changes. These updates establish clearer boundaries between edge-layer traffic control and downstream authentication logic, reduce risks of serving stale authorized content, and ensure permission changes take effect instantly through read-your-writes semantics.

  4. 4
    Article
    Avatar of auth0Auth0·20w

    A New Auth0 ASP.NET SDK to Secure Your API

    Auth0 releases a beta SDK for ASP.NET Core that simplifies API authentication. The new package wraps Microsoft's JWT Bearer authentication while adding native DPoP support for enhanced security. It provides pre-configured Auth0 settings, flexible configuration through the options pattern, and maintains full compatibility with standard JWT Bearer features. Installation requires .NET 8 or above and involves adding the NuGet package and configuring authentication in Program.cs.

  5. 5
    Video
    Avatar of seytonicSeytonic·19w

    Inmate Hacks Prison: Watches P***, Prints Money, Reduces Sentence

    A Romanian inmate exploited admin credentials to access a prison management system, allowing prisoners to view restricted content, inflate account balances by millions, and reduce sentences. India's government attempted to mandate a preinstalled, undeletable cybersecurity app on all phones but backtracked after backlash. Multiple US radio stations were hacked through poorly secured studio transmitter links with default passwords, broadcasting unauthorized content and triggering FCC warnings about security practices.

  6. 6
    Video
    Avatar of TechWithTimTech With Tim·16w

    FastAPI + React B2B SaaS Full Project Build - Orgs, Users, Billing, Roles & More...

    A comprehensive tutorial demonstrating how to build a B2B SaaS application with organizations, team members, billing, subscriptions, permissions, and role-based access control. The implementation uses FastAPI for the backend and React for the frontend, with Clerk handling authentication, organization management, and billing. The tutorial covers database modeling with SQLAlchemy, JWT token verification, permission systems, API route creation, and integrating Stripe-style subscription tiers with member limits.

  7. 7
    Article
    Avatar of nuxtandvueVuejs&Nuxtjs·18w

    Skip the Boilerplate: Build Vue 3 SaaS Apps with Ready-Made Clerk Authentication

    A Vue 3 SaaS starter template that integrates Clerk authentication with Shadcn-Vue components, offering a complete dashboard layout with protected routes, dark mode support, and TypeScript. Built with Vite and Vue's Composition API, it provides custom-styled authentication flows, responsive navigation, and a production-ready structure for building SaaS applications quickly.

  8. 8
    Video
    Avatar of freecodecampfreeCodeCamp·18w

    Intro to Supabase – Full Tutorial for Beginners

    Supabase is an open-source backend-as-a-service platform built on PostgreSQL that handles database operations, authentication, and real-time data synchronization. This tutorial walks through building a React sales dashboard with Supabase, covering database setup, querying data with the client library, implementing real-time subscriptions for live updates, inserting data through forms, and adding user authentication with sign-up/sign-in flows. The course demonstrates connecting a React frontend to Supabase using environment variables, fetching and displaying aggregated sales data in charts, and securing data with row-level security policies.

  9. 9
    Article
    Avatar of freecodecampfreeCodeCamp·18w

    Supabase for Beginners

    Supabase is an open-source Backend-as-a-Service platform that enables rapid application development. This tutorial teaches Supabase fundamentals by building a React.js Sales Dashboard with user authentication, role-based access control, real-time data updates, and secure user management. The course covers database schema design with multiple related tables, authentication and JWT session handling, data querying and aggregation, visualization with bar charts, and real-time subscriptions. Students will create automated user profiles using database triggers and implement permission-based data filtering for a production-ready business application.

  10. 10
    Article
    Avatar of ergq3auoeReinier·19w

    Next.js 16 Full Stack Course (8+ Hours) | Auth, Caching, Server Actions & Much More

    An 8+ hour comprehensive video course covering Next.js 16 from fundamentals to advanced concepts. The tutorial builds a production-ready full-stack application while teaching routing, server components, authentication, data fetching, real-time updates, caching strategies, and deployment. Includes coverage of new Next.js 16 features like Cache Components for improved performance and efficiency.

  11. 11
    Article
    Avatar of ergq3auoeReinier·20w

    Complete NodeJS REST API Course | ExpressJS, JWT Authentication, PostgreSQL, Prisma...

    A comprehensive video course covering backend development fundamentals including building REST APIs with Node.js and Express, implementing JWT authentication, database management with PostgreSQL and Prisma ORM, and input validation techniques.

See all Authentication archives