New login stuff, if your username changed and you need your email updating let me know

auth0 is a commercial thing, and it's fairly heavy as well as pricey.

The cost:

• https://auth0.com/pricing
  
• 10k users per month = $190/mo
  
  

That's basically not far from the cost of our web servers for all sites. So it's definitely expensive.

However they have a free plan if the number of "active users" is below 7k in a month... and so I figure that I can make each site owner register their own auth0 account, and this spreads the load, whilst leaving the site owners fully in control of their user lists, and it means it's free.

But the second issue... the minified JavaScript is over 600KB. That's more than half a meg, for JS just to sign in.

That's crazy.

But hey, this all works, so it's a good plan B.

Ah... plan B.

Because Portier is still Plan A. I've configured auth0 to do what Portier will do, auth against Google and Microsoft, or send a code to your email.

Portier is free, and there's no need to make it have a 600KB JS file.

So Portier is behind schedule but free, and should work identically to the way auth0 is working (or near enough to not make a difference).

Portier is in fact the preferred option as:

• it is free
  
• it is open source
  
• it can be self-hosted
  
• it will be lighter and quicker
  
  

But the Plan B means:

• I definitely have something in the bag for when Persona shuts
  
• Sites like the Rapha Cycling Club can opt to integrate their auth0 into their real user database (sign into the shop, be automatically signed into the forum)
  
• Sites that want it can opt to use auth0 instead of Portier (if they have low enough usage to be free or are cool with the cost)
  
  

Basically... options, this gives us options.