W
Wasp2w ago
brutushillwood

Has anyone tried replacing WASP authentication with Auth0?

Im using WASP version 0.15.0 on WSL with Ubuntu Would attempting this mess with the rest of the framework or compiler? I’m building a security app and outsourcing this service for their brute force protection and MFA options would be super helpful as we scale up.
4 Replies
kapa.ai
kapa.ai2w ago
Hi @brutushillwood. I'm kapa.ai, your friendly support bot. I will try to answer your question by searching through the knowledge base. :wave: ---------------------- Based on the knowledge sources, there isn't specific information about anyone successfully replacing Wasp's built-in authentication with Auth0 in version 0.15.0. However, I can provide some insights about authentication in Wasp and potential integration with external auth providers. Wasp has its own built-in authentication system that was significantly updated in version 0.12.0. The current built-in auth supports Google, GitHub, and email verification methods, with more providers planned for future updates. Regarding your specific question about using Auth0: 1. It appears technically possible to use external auth providers like Auth0 with Wasp, though it's not a standard integration. As mentioned in one of the Discord threads, when someone asked about using Clerk or Auth0, a community member confirmed "Yeah you could, although Wasp's built-in Auth takes care of everything for you" Discord thread. 2. There's an open issue (#1476) about adding multi-factor authentication support to Wasp, which mentions that a user wanted MFA for production use. This suggests that robust MFA isn't yet built into Wasp's standard auth system. 3. If you're concerned about vendor lock-in, it's worth noting that Wasp generates standard React, Node.js, and Prisma code that you can take and use independently if needed. For your security app requiring brute force protection and MFA, you might have a few options: - Wait for upcoming auth provider additions to Wasp - Attempt to integrate Auth0 yourself, though this would be a custom solution - Consider if Wasp's existing social auth providers (Google, GitHub) would meet your needs as they provide some MFA capabilities Since you're using WSL with Ubuntu, make sure your development environment is properly set up on the Linux filesystem to avoid hot reloading issues that some users have encountered. If you decide to attempt Auth0 integration, you'd likely need to modify the generated code in the auth system, which could potentially create maintenance challenges when updating Wasp versions. I don't have enough information from the knowledge sources to provide a definitive answer about whether this would "mess with" the rest of the framework, but customizing core functionality like authentication would require careful consideration. ---------------------- Note: you can ask me a follow up question by @ mentioning me again :speech_balloon: ---------------------- Sorry @brutushillwood, I seem to be having a bit of trouble. Don't worry though, I've pinged my support and they will try to fix me up! :technologist: Perhaps try again in 15mins?
brutushillwood
brutushillwoodOP2w ago
@kapa.ai when will the beta end?
kapa.ai
kapa.ai2w ago
Let me check the knowledge base for you again. One moment! :books: ---------------------- Based on the knowledge sources provided, there isn't a specific date mentioned for when Wasp will exit its beta phase. Several sources confirm that Wasp is currently in beta: - The testing documentation explicitly states "Wasp is in beta, so keep in mind there might be some kinks / bugs, and possibly some changes with testing support in the future" Wasp Documentation. - Discord conversations from early 2024 reference Wasp being in beta, with one community member noting "Wasp is in Beta, so we are focusing on first on getting things right, then 'expanding'" Discord thread. The knowledge sources show that the Wasp team has been actively developing and releasing new versions (such as v0.12) with significant improvements, which suggests ongoing development toward a stable release. However, there's no explicit timeline or criteria mentioned for when they plan to exit the beta phase. If you need a more definitive answer about the beta timeline, I'd recommend asking directly in the Wasp Discord community where the developers are active. I'm sorry I couldn't provide a more specific answer to your question about when the beta will end. ---------------------- Note: you can ask me a follow up question by @ mentioning me again :speech_balloon: ---------------------- Sorry @brutushillwood, I seem to be having a bit of trouble. Don't worry though, I've pinged my support and they will try to fix me up! :technologist: Perhaps try again in 15mins?
Carlos
Carlos2w ago
Hey @brutushillwood, I'm not sure about a timeline for this, but I can tell you I was fighting with this yesterday as well, and Miho shared a way to do a custom implementation. The example is Spotify but you can swap that for another OAuth provider (like Auth0). https://discord.com/channels/686873244791210014/920312576133443634/1358743398064066663

Did you find this page helpful?