Starting at $0/mo
Do you want your application to be available only to developers, clients or early adopters? Just specify email addresses of users that should be allowed access. Mozilla Persona is used to securely prove that a visitor owns an allowed email. Persona has an elegant, easy to use UI that works out of a box with all modern browsers.
Disallowing public access to your application significantly reduces the attack surface in case a security bug is present in the application or an underlying framework.
For additional protection, the service monitors version of the authorization library that your application uses. If the library needs a security update, you will be notified.
Persona removes the need for site-specific passwords. Forget about creating, securing, distributing and updating passwords. Simply add an email address to grant access, remove the address to revoke access.
An admin web interface allows to specify fine-grained access control rules based on paths of resources. If you want, some locations can be left open.
Enable the authorization with three lines of config, there is no need to modify application code. Node.js, Rails and Ruby Rack based applications are supported.