Azure Static Web Apps simplifies authentication with pre-configured providers like GitHub, Twitter, and Azure AD with no extra setup required. Learn about default behavior, custom providers, setting up sign-in and sign-out, blocking access with custom route rules, and resource management. Assign users custom roles with invitations, and programmatically assign roles with API function at sign-in. Understand that authentication and authorization have overlapping routing concepts, detailed in the Application configuration guide. Configure a custom Azure AD provider to restrict sign-in to a specific tenant. Use friendly URLs to expose provider-specific routes and redirect to post-login pages with fully qualified URLs or referrer redirects. Take advantage of the /.auth system folder to access authorization-related APIs in a secure manner.