Hi together!
I’m currently evaluating if we can use Auth0 for our next project. Maybe you guys can help me with my thoughts and tell me about your experience on how you would implement the following scenario.
We want to implement a global SaaS. We have roughly identified 3 user groups that communicate with our software via their own API’s and applications. Each of these user groups has different requirements.
- Group A: Admins, Internal Employees. MFA required. Access via Website. No self-registration. Strong password policy. ~5-20 Users
- Group B: These users require a paid subscription and generate the content for our software. They can add other users to their account who can help maintain the content. Access via Tablet, Smartphone, Web. Possibly other hardware (POS system). ~5-10k users
- Group C: The end users. This group can freely use the app and authenticate via social provider in addition to email. mainly smartphone. Potentially millions of users
Unfortunately, I currently lack the experience and understanding of how best to implement this scenario. Currently I tend to create a separate Auth0 tenant (+ SDLC tenants) for each user group, but maybe there is a better way? My gut feeling would be to create a separate tenant for at least group A (admins), since they have a special position. The articles on Multi-Tenant Applications Best Practices & How to Use Auth0 for B2B Multi/Single-Tenant SaaS Solutions didn’t help me either, unfortunately.
I know there is no patent solution, but maybe someone has already solved a similar problem and can help me. Thanks in advance