Lucia is being deprecated and now lives on as a learning resource, not a maintained library. Tuurio ID is a maintained, managed identity provider with standard OIDC, MFA and passkeys — EU-hosted.
Lucia was a lightweight auth library, but the maintainer has deprecated it: the package is no longer actively developed and the project now serves as an educational resource for building auth yourself. That leaves teams maintaining session and adapter code with no upstream support.
Tuurio ID replaces that burden with a maintained, managed identity provider on standard OpenID Connect. You get enforceable MFA, passkeys and multi-tenant organizations, hosted in Germany with an Art. 28 GDPR data-processing agreement — no library to keep alive yourself.
A maintained path off a deprecated library, without rebuilding auth from scratch.
A managed service with support, not a deprecated package.
MFA and passkeys included — no crypto or session code to own.
Integrate with off-the-shelf libraries, no custom adapters.
Hosted in Germany, GDPR-compliant with a data-processing agreement.
How a maintained, EU-hosted identity provider compares to a deprecated auth library.
| Criterion | Lucia (library) | Tuurio ID |
|---|---|---|
| Status | deprecated | actively maintained |
| Type | self-hosted library | managed service |
| MFA & passkeys | do it yourself | included |
| Sessions & maintenance | your responsibility | managed |
| Multi-tenant / organizations | do it yourself | yes |
| Hosting | your infrastructure | Germany (EU) |
Last reviewed: June 2026. Public competitor information can change; verify plan details and legal terms before deciding.