Amazon Cognito and Passport Comparison

Bryan Giese

Cognito and Passport Comparison

Identity management is a hot topic lately—stories about cyber breaches, industrial-scale data mining and the EU’s GDPR all connect back to a company’s identity system eventually. Too often those stories gloss over that fact that many of these data protection failures were avoidable if the companies involved implemented more effective customer identity and access management (CIAM) solutions. Two popular solutions, Cognito and Passport, are offered by Amazon and Inversoft, respectively, although they approach the problem from different perspectives.

Continue reading

Active Directory and Passport CIAM Comparison

Bryan Giese

Active Directory and Passport Comparison

Active Directory and Passport CIAM often come up together in conversations about identity solutions for modern web-enabled applications. While they fall under the umbrella of “identity management solutions,” the truth is that Active Directory and Passport have a substantially different set of features. Active Directory was originally developed for centralized domain management within Windows networks with hundreds of users. Over time it layered additional identity-focused services on the core hierarchical structure. In contrast, Passport was designed from day one as a user management solution for applications with thousands to millions of customers. This shift in focus is a significant difference between an Identity & Access Management (IAM) solution and a Customer Identity & Access Management (CIAM) solution.

Continue reading

6 Ways The Passport API Is GDPR Ready

Bryan Giese

6 Ways Passport API is GDPR Ready

The GDPR is a complex regulation, but at its most basic level it requires organizations to provide “data protection by design and default.” Inversoft’s Passport is built with a powerful REST API that gives developers the tools they need to adhere to the requirements of the GDPR with quickly and easily. On May 23 Inversoft’s CEO Brian Pontarelli presented to Colorado’s technology leaders about how the GDPR and data privacy will affect US companies, and went into detail about how the Passport API is well-suited to help companies stay GDPR compliant and avoid risks of fines and data restrictions for data protection violations.

Continue reading

Firebase and Passport CIAM Comparison

Bryan Giese

Firebase and Passport CIAM Comparison

As we talk to and win new clients, we learn about the other identity management platforms that are available today. One of the more interesting discoveries is that Firebase and Passport are coming up as comparable products. While they are both called identity management solutions, the truth is that Firebase and Passport are very different products designed with a substantially different set of features. As true CIAM solutions, they really don’t compare.

Continue reading

Using Webhooks In Passport To Delete User Data

John Philips

Using webhooks in Passport

If your inbox looks anything like mine, it’s currently full of messages from companies updating their privacy policies and terms of service. This is mainly due to a newly adopted EU regulation, the General Data Protection Regulation or GDPR, which goes into effect on May 25, 2018. The GDPR grants a set of “digital rights” to EU citizens, including a “right to erasure.” Basically, this means a user can request that their data be deleted, and there can be substantial fines if a company is not able to honor these requests.

In this post, we’ll show how to set up webhooks in Passport to delete all of a user’s data when they delete their account. In Passport, webhooks are used to subscribe or listen to events in the system, so we’ll create a webhook that listens to the user.delete event.

Continue reading