Out of the box, a modern Customer Identity and Access Management (CIAM) solution should provide:
- User registration to create the behind-the-scenes record associated with each user
- Proper authentication to establish with confidence that the users logging into accounts are who they say they are, using one or more factors to do so
- Effective authorization to provide a user with the appropriate level of access to privileges, resources, applications, etc.)
- Comprehensive Identity management to enable customers and administrators to make updates and changes to users’ data and access
These components deliver the basic Identity functionality (e.g., signups, logins, account updates, password resets, etc.) your users need to engage with your apps, web portals, and other digital channels.
However, while many fundamental Customer Identity use cases are common across all manner of organizations, that’s only part of the CIAM story.
What Does Extensibility Mean, and Why Does It Matter
The literal definition of “extensible” is “able to be extended or stretched.”
In the Customer Identity domain, extensibility is the critical characteristic that enables a CIAM solution to do more than performing the minimum functions outlined above, in isolation.
This ability to do more is especially important because, in practice, every organization has:
- A unique set of technologies and an overall IT environment
- Unique (and often unforeseen) needs that either extend beyond the Customer Identity fundamentals or at least require that the Identity stack transact with other systems
Let’s quickly explore how extensibility addresses these challenges.
Extensibility overcomes fragmentation
At the foundational level, technology stacks are typically a mix of best-of-breed software-as-a-service (SaaS) applications and broader enterprise suites. In practice, these components are either poorly integrated or not integrated at all, with the result that they barely deliver to the sum of their parts, let alone to their collective potential.
This technology fragmentation frequently causes (or, to a lesser extent, contributes to) Identity fragmentation, with the organization lacking a central, authoritative, and accurate repository of customer identities and related information.
As a result, businesses struggle with inconsistent user experiences, security vulnerabilities, and operational inefficiencies — all of which make it harder to deliver seamless, secure, and personalized interactions across channels.
An extensible Customer Identity solution can be integrated across an organization’s wider technology stack to establish a single, authoritative record of each customer’s Identity. By doing so, it enables convenient, privacy-respecting, and secure customer experiences while also contributing to compliance and serving as the foundation of customer-centric analytics.
Extensibility future-proofs Customer Identity
As the organization matures, your Customer Identity stack typically needs to satisfy advanced use cases. More often than not, doing so requires transacting with specialized business systems and third parties to execute complex conditional flows.
For example, building Identity-powered customer journeys could entail:
- Allowing a customer to browse and add items to a cart using a standard login, but then prompting them for multi-factor authentication (MFA) prior to completing the purchase
- Presenting Terms of Service (ToS) and capturing consent during signup through integration with a consent management system
- Presenting updated ToS, only as necessary, during a subsequent login
- Exchanging data with fraud management solutions to reduce exposure to banking and credit card fraud
- Engaging an Identity proofing solution to verify a user’s real-world Identity
And this is only scratching the surface!
To put the possibilities (and potential demands) in perspective, consider that the Auth0 Marketplace includes more than 324 pre-built integrations across 13 different categories. This extensive collection simply wouldn’t exist if not for the real-world needs of our customers, and it speaks to Customer Identity being both a hub and a spoke for so much of what today’s organizations need.
Possible Versus Practical: Different Forms of Extensibility
So far, we’ve only examined what extensibility means and why extensibility matters — but that’s only part of the story.
Let’s now look at how extensibility is achieved and implemented in the real world.
In theory, the most extensible Customer Identity solution is one custom-coded for your organization. This approach provides complete control over every aspect of your CIAM implementation, and extending it is straightforward—just keep writing and maintaining custom code forever.
However, most organizations don’t have a staff of experienced Identity developers sitting around waiting for a project. For this reason — and many others — building your own Customer Identity solution is not practical, which is why countless organizations have come to the conclusion that buying an off-the-shelf Identity-as-a-Service (IDaaS) solution is the right path (for added context, KuppingerCole projects CIAM market volume to reach $4.55 billion USD in 2025). (KuppingerCole, 2023)
There are several mechanisms for implementing extensibility within IDaaS solutions. Ultimately, each of these extensibility options—no-code, low-code, and pro-code—has value, which is why the most comprehensive IDaaS solutions offer all three.
No-code extensibility
No-code extensibility refers to approaches like point-and-click configuration and filling in a few blanks. Certainly, this option is attractive for its usability — practically anyone can tweak the IDaaS to customize the set of claims being returned to your apps, or attributes like the logo and text displayed during authentication.
With sufficient feature richness and the availability of pre-written integrations (such as those in the Auth0 Marketplace), it’s even possible to leverage no-code options to integrate the IDaaS with other business systems.
Low-code extensibility
Through the use of code snippets, low-code extensibility offers more power and flexibility than the no-code approach. Developers will likely have no problems getting up to speed, and even personnel new to coding can quickly become adept due to the fairly well-defined blanks that need to be filled.
The primary drawback of low-code extensibility is that by permitting snippets only for particular needs, this approach imposes some limits on what’s possible. However, an alternative view is that these limits function as guardrails that prevent problems.
Pro-code extensibility
Pro-code extensibility delivers the ease of implementation that comes with using a ready-built solution, plus the expressive power and precise control that’s only possible through code — an ideal combination for extending a solution with custom logic.
However, fully leveraging pro-code extensibility requires greater comfort with coding and familiarity with Customer Identity in general.
Wrapping Up
Customer Identity doesn’t exist in a silo. While it often first arises to address user registration, authentication, authorization, and Identity management, most organizations will soon need to integrate their Identity stack with a range of existing IT and business systems.
Plus, the real world is complex, dynamic, and often unpredictable. Being able to accommodate change and tailor Customer Identity to your unique needs is the difference between CIAM as a necessary component of your application stack and CIAM as an operational and competitive advantage.
Extensibility allows you to implement robust customer identity and access management, including introducing specialized identity functions, and get the most out of the business and IT systems you already have.
Importantly, practical extensibility mechanisms (e.g., no-code, low-code, and pro-code options) allow you to do these things without drawing too heavily upon your developers or creating ongoing maintenance headaches.
This post has intentionally skipped over some of the more technical aspects of the extensibility conversation, but if you’d like to learn more, please take a look at Customer Identity and the extensibility imperative.
About the author
Abbie Carlson
Senior Product Marketing Manager - Developer Experience & Analytics
As a Product Marketing Manager, I'm responsible for communicating the value of Identity for consumer apps as well as focusing on the developer experience. I'm forever curious about how Identity plays a role in our everyday lives as consumers and how a great Customer Identity solution can make or break a business through patron loyalty and retention.
Outside of work can catch me watching Seattle sports, going to as many concerts as I can or listening to true crime podcasts.