Home / Companies / FusionAuth / Blog / May 2026

May 2026 Summaries

5 posts from FusionAuth

Filter
Month: Year:
Post Summaries Back to Blog
FusionAuth provides a comprehensive framework for analyzing user behavior to guide product development and improve customer retention through cohort analysis. By leveraging FusionAuth's login statistics, users can be grouped into cohorts for detailed insights, such as usage frequency and user reactions to new features or marketing campaigns. Built-in charts within FusionAuth's admin UI offer visualizations of user logins, registrations, active users, and abandonment rates, though more complex charts require exporting data for further analysis. The text outlines the steps to extract user data, create various charts, and interpret these visualizations to identify growth versus retention issues, assessing user engagement over time. Additionally, instructions are provided for setting up a system to generate and analyze these charts using mock data, emphasizing the need for careful data handling and potential customization to match specific business needs.
May 26, 2026 2,606 words in the original blog post.
The FusionAuth CLI has evolved to enhance user management of FusionAuth instances by introducing features such as theme management, email template configuration, and lambda function editing. The latest update aims to simplify the FusionAuth setup process by providing a streamlined educational experience for new users through a suite of commands that create a well-configured starting point for authentication projects. By leveraging Docker, users can quickly initialize a FusionAuth instance with essential components like an API key and an application using the Kickstart process, which reduces the need for manual configuration. Additionally, commands such as 'kickstart:start', 'kickstart:stop', and 'kickstart:kill' enable efficient management of the FusionAuth Docker setup, allowing developers to focus on coding rather than setup intricacies. Feedback and feature requests for further CLI improvements are encouraged through GitHub Issues.
May 12, 2026 329 words in the original blog post.
The acquisition of Permify by FusionAuth represents a strategic merger between two complementary products focused on enhancing authorization and authentication services in software development. Permify, based on Google's Zanzibar model, centralizes authorization logic, allowing dynamic changes without redeploying applications, thus addressing common pitfalls in authorization like hardcoding and delayed decision-making. FusionAuth, known for authentication and identity management, complements Permify by offering fine-grained authorization, enabling a comprehensive Customer Identity and Access Management (CIAM) solution. This merger is expected to accelerate Permify's growth through FusionAuth's enterprise experience and support while maintaining Permify's open-source model and community involvement. The acquisition promises to provide developers with a clear separation of concerns, scalable models, and a unified platform, enhancing the development of secure, dynamic, and relationship-driven systems.
May 08, 2026 1,016 words in the original blog post.
The Token-Mediating Backend (TMB) authentication architecture for OAuth 2 applications is a variation of the Backend-for-Frontend (BFF) model, where the access tokens are stored in the frontend, allowing the browser to directly call resource servers without routing through the backend. Although TMB is less secure than BFF due to the vulnerability of access tokens to exfiltration by malicious JavaScript and cross-site scripting (XSS) attacks, it is more secure than the Browser-Based OAuth Client (BBOC) architecture. TMB is particularly suitable for applications requiring real-time performance or facing infrastructure constraints, as it reduces latency by bypassing backend routing. The security of TMB can be enhanced by implementing Demonstrating Proof of Possession (DPoP), which binds the token to a cryptographic key, thereby requiring both the token and a signature for requests. Despite its vulnerabilities, TMB can be a viable option when combined with DPoP for applications that cannot fully utilize BFF due to specific constraints, while FusionAuth provides support for integrating DPoP to improve security measures.
May 07, 2026 2,269 words in the original blog post.
Progressive delivery is a modern approach to software deployment that allows users to control when new features are enabled, thereby minimizing unexpected user impact. This method separates software deployment from feature enablement and relies on user identity to categorize preferences for feature rollout, such as beta or stable experiences. By utilizing feature flagging and identity management through systems like FusionAuth, applications can offer personalized experiences by enabling specific features for different user categories. This involves storing user preferences in attributes like rollout_level, which are then delivered to applications via JWTs after user authentication. Applications use these attributes to interact with feature management systems, ensuring features are progressively exposed based on user criteria. FusionAuth supports this process with flexible user attributes, search capabilities, and JWT customization, facilitating targeted feature rollouts. The approach emphasizes the importance of identity as the foundation for tailored user experiences, allowing organizations to manage feature deployment effectively.
May 05, 2026 1,805 words in the original blog post.