Up until very recently, Cloudfier applications had no way to authenticate users – there was a login dialog but all it was meant for was to allow users to assume an arbitrary identity by informing the name of an existing user.
That is no longer the case. The latest release build (#29) addresses that by implementing a full-blown authentication mechanism. Now, when you try to access a Cloudfier app, like this one, you will be greeted by this login dialog:
which allows you to sign up, request a password reset and sign in either with proper credentials or as a guest.
For more details about how authentication works in Cloudfier applications, check the new authentication documentation.
BTW, kudos to Stormpath for providing such a great API for managing and authenticating user credentials. Highly recommended.
Glad you asked. Next is authentication’s bigger friend: authorization. Right now any user can do anything to any data, and of course that is not reasonable even for the simplest applications. Stay tuned for more on that.