CASE 128 · VELVET · 2024
Auth0 to Cognito, with social logins and password resets intact.
A consumer marketplace was paying Auth0 $11,200/month for an authentication service that did mostly what Cognito does for less than $400/month. We migrated 480k active users without forcing a single password reset.
Consumer marketplace
MIGRATION
2024
RESULTS
What changed, by the numbers.
AUTH BILL
−96%
USERS MIGRATED
480K
PASSWORD RESETS REQUIRED
0
SOCIAL CONNECTIONS
PRESERVED
HOW IT WENT
Auth0 had been chosen four years earlier when it was the obvious answer. The team had since outgrown the price tier without outgrowing the feature surface. The migration risk was real — auth is the front door — but the financial math was no longer debatable.
Cognito’s pre-authentication Lambda trigger verified each user’s password against Auth0 on first login post-cutover, then created the equivalent Cognito user. Google and Apple federated providers preserved social connections (Cognito’s federated identity providers map cleanly to Auth0’s social connections).
After ten weeks, 87% of active users had been migrated transparently. The remainder got a courtesy "we’re upgrading our system, sign in again" email that explicitly avoided the words "password reset" (and didn’t require one). Auth0 contract didn’t renew; annual saving was over $130k.
RELATED · SAME DOMAIN
Other engagements in this space.
READY WHEN YOU ARE
Let's get your AWS bill (and architecture) in order.
The discovery call is free. You walk away with at least one concrete idea — even if we never work together.