November 27, 2017 By Carmel Schindelhaim
Beery Holstein
3 min read

New in App ID – Let Users Sign-up and Sign-in to your Apps with an Email and Password

We are excited to launch our newest IBM Cloud App ID feature, Cloud Directory, that makes it easy for you to add user sign-up and sign-in to your mobile and web apps. Cloud Directory provides you with a user registry for your apps that scales with your user base, and includes simple ways to authenticate users to your apps using email and password. Cloud Directory has pre-built functionality for enhanced security and self service, like email verification, and password reset.

More broadly, App ID is an authentication and profiles service for developers to help you easily add authentication to your apps, and secure access to your APIs and app back-ends running on IBM Cloud. With App ID SDKs and APIs, you can get a sign-in flow working in minutes, enable social log-in through Google and Facebook, and add email/password sign-in. Use the the App ID User Profiles feature to store information about your users, like their app preferences, and leverage that info to build custom app experiences.

With Cloud Directory, let users sign-up directly from your app. Then, users have the option to sign-in with the email address and password that they set, or sign-in through external identity providers like Facebook and Google. Use pre-built functionality for email verification, and password reset. Configure the workflow to suit your needs, like to allow users to use your app for a period of time before they verify their email address. Take advantage of Cloud Directory client side APIs to allow users to change their password whenever they need to, or to log-out of your app.

App ID’s Cloud Directory includes a prebuilt sign-up and sign-in UI widget that you can use in your app, and a UI to let users reset their passwords. You can customize the logo and color scheme. If you want use your own branding, replace the default Cloud Directory sign-in UI with your own.

Cloud Directory integrates easily with App ID’s User Profile service, just as App ID’s social log-in functionality does. You can store data about users who choose to log-in with an email and password, and use that data to personalize their app experience. Also, users can start using your app anonymously, and when they do decide to sign-up or log-in, their saved attributes will carry over from their anonymous profile.

All this functionality is designed to save a lot of time you might otherwise spend writing custom code to build authentication flows, and time getting into the weeds of different security protocols and standards. App ID is built with the latest security standards, like OAuth2, OIDC, and SCIM, and allows you to easily meet security and privacy requirements to handle user data and sensitive info like passwords. Also, by enabling self service flows through App ID, you reduce help-desk traffic, which is always a good thing!

We’d love to hear from you with feedback and questions. Get help for technical questions at Stack Overflow, with the ‘ibm-appid’ tag. For non technical questions, use IBM developerWorks, with the ‘appid’ tag. For defect or support needs, use the support section in the IBM Cloud menu.

Also, for those of you who used Mobile Client Access (MCA) previously, some of you may have used the custom authentication feature of MCA to use a User Repository that you built yourself to manage users for your apps. If so, you might want to go check out Cloud Directory.

To get started with App ID, check it out in the IBM Cloud Catalog

– The App ID team

More from Security

Enhance your data security posture with a no-code approach to application-level encryption

4 min read - Data is the lifeblood of every organization. As your organization’s data footprint expands across the clouds and between your own business lines to drive value, it is essential to secure data at all stages of the cloud adoption and throughout the data lifecycle. While there are different mechanisms available to encrypt data throughout its lifecycle (in transit, at rest and in use), application-level encryption (ALE) provides an additional layer of protection by encrypting data at its source. ALE can enhance…

Enhancing data security and compliance in the XaaS Era 

2 min read - Recent research from IDC found that 85% of CEOs who were surveyed cited digital capabilities as strategic differentiators that are crucial to accelerating revenue growth. However, IT decision makers remain concerned about the risks associated with their digital infrastructure and the impact they might have on business outcomes, with data breaches and security concerns being the biggest threats.   With the rapid growth of XaaS consumption models and the integration of AI and data at the forefront of every business plan,…

IBM named a Leader in Gartner Magic Quadrant for SIEM, for the 14th consecutive time

3 min read - Security operations is getting more complex and inefficient with too many tools, too much data and simply too much to do. According to a study done by IBM, SOC team members are only able to handle half of the alerts that they should be reviewing in a typical workday. This potentially leads to missing the important alerts that are critical to an organization's security. Thus, choosing the right SIEM solution can be transformative for security teams, helping them manage alerts…

IBM Newsletters

Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters