What is the best “tech” for authentication in Elixir Phoenix?
My main concern is security and what is best for so-called "enterprise" -grade applications.
I see a few options:
a) “new” mix phx.gen.auth
b) Elixir library, like Guardian
c) 3rd party service, ie. OAuth0, Okta, AWS Cognito.
I would prefer Cookies sessions over JWT. Also, I’m aware that I need to take care about other issues, ie. XSS, CORS, etc. to make the application secure.
I’m returning back to the Elixir and Phoenix after 2 years break, so I need to catch up a bit.