this post was submitted on 13 Nov 2023
1 points (100.0% liked)

Entrepreneur

0 readers
1 users here now

Rules

Please feel free to provide evidence-based best practices, share a micro-victory, discuss strategy and concepts with a frame work, ask for feedback, and create professional conversation. Treat every post as if you're at work and representing the best version of yourself.

founded 1 year ago
MODERATORS
communick@indiehackers.space
1
Ways to prevent account sharing in a SaaS? (alien.top)
submitted 1 year ago by murenzi_company@alien.top to c/entrepreneur@indiehackers.space
5 comments fedilink hide all child comments
 

Hey there! I own a few SaaS companies and we have been trying to figure out ways to prevent account sharing and curious to know how you do it?

The current way: if a user is logged in, and another session is signed in the same user, the first user that was signed in is kicked from the session.

But- we are trying to fully combat it because the loop hole here is the second person simply asking if the first person is active on their session and they can still share an account. We do per user per month pricing so we find that a decent amount of people would try to pay less by just sharing an account.

Thanks in advance for your advice and insight!

you are viewing a single comment's thread
view the rest of the comments
[–] Gaboik@alien.top 1 points 1 year ago

Just worth noting that this would pretty much only work if the OTP is sent via SMS, no other 2FA flow would solve the issue Beit email or with a TOTP QR code or wtv