Here's an article[0] (on my employer's website) that talks through some of the things to think about when choosing an authentication solution. (It's a bit old so doesn't discuss BetterAuth directly.)

An embeddable library is great for one application; simplifies development and deployment. You can have foreign keys directly to user ids. It's the reason Devise or Spring Security are great for single applications

Yet breaking out authentication to a separate service is one of the first things broken out a certain scale. Why?

   * single sign-on between applications (if you have more than one)
   * eliminate a user data silo (if you have more than one application)
   * different security/legal requirements between PII/credentials of users and application data
   * a desire to hang multiple applications off of one identity store for data consistency
   * separate deployment cadences

(The multiple app case is much stronger for IAM/Workforce, part of why Okta is a 17B company.)

Such a migration can be complex, so if you can see needing any of the above things soon, it can make sense to start with a sep auth server. You don't need to be google scale to get the benefits.

0: https://fusionauth.io/articles/identity-basics/complete-auth...

> The killer feature is that it's embeddable into your app. You don't have to host anything besides your app and your app's database.

That's why they're gonna monetize by building a cloud service?

Does it also embed two-factor authentication, confirmation/reset emails for me? Those are the reasons one might want to go with Firebase.