I particularly like this one FTA: "When your competitors’ authorization systems are down at the same time yours are, nobody blames you for it, but when you’re the only company having issues, you suffer reputationally. No matter what your outsourced auth system is (FusionAuth, Cognito, AAD, etc), you can be almost certain that you won’t be alone in the event of an outage."
They give the real reason: because if your auth provider is breached other clients will be as well and that diffuses the blame. (non)-security by herd instinct.
freitasm|5 years ago
Ok...
fmajid|5 years ago