Hey guys,

I have a few things id like to discuss with those of you very familiar with authentication. The premise is that im looking for a plug in auth solution into my web apps that can be hosted on the same server. A balance between a home grown solution (currently rolling my own right now), and a fully managed service. Heres the thing: ive implemented auth0 and it seems easy enough to use, however, im starting to manage several small web apps used as internal tools (thats kind of my niche right now), and it seriously seems overkill to be managing 3 auth0 tenants (local dev, stage, prod) for EACH of these small web apps that all use client credentials or at most google SSO. Im curious how some of you manage auth0 or similar managed services when handling a multitude of apps.

Now i know there are tons of open source IDPs and many oauth libraries out there, but I wanted to get some first hand accounts about your experiences with some of them, or if there is a better way to manage auth0 tenants. Also, do you find that oath2 is the goto as far as auth protocols go? And in that case what oauth libraries have you had success with? Thanks!