I am building a social network. Is it better to implement my own user authentication or use 3rd party authentication services? I want to build this without the use of a paid 3rd-party.
For further actions, you may consider blocking this person and/or reporting abuse
Top comments (6)
If you're rolling your own authentication system, at least use one of the many libraries out there that are properly reviewed etc.
Rolling your own authentication from scratch is generally a bad idea unless you really know what you're doing (there's more pitfalls to it then you'd think)
I think it is not that bad idea, but is huge effort :-)
if you're rolling your own authentication system for anything other than learning purposes (so god forbid production), you really should NOT be rolling an authentication system from scratch.
With that, I mean write one yourself.
Use libraries that are well established by people who know security.
Security is hard, and one mistake can open up all your users to being hacked, never mind the legal trouble YOU are going to be in when that happens (especially since OP wants to build a social network and those generally end up keeping sensitive information about their users).
Imo best practice is to use a third party system at first to validate ur idea then to switch over to ur own implementation after you've gotten enough traffic to validate your idea
If you go solo, then use third party (auth0, firebase auth...). Else if you have time before launch, do it yourself for learning purpose.
Building a social network of your own means its better to have your own user authentication. That will give you more control with your stuffs.
Completely my opinion!