Authress Logo with Text

Login and access control API

Add security to your application.

Complete authentication and authorization solution you can easily drop into the software you're building. It enables easy login integration, as well as fine grained control over the permissions.


Hosted, customizable login UI

Seamless sign-on experience for your enterprise customers

  • Unlimited SSO connections
  • SAML, OAuth, OIDC integrations
  • Unlimited machine tokens
  • Enterprise sign up and invitations
  • Easy tenant separation

Add social login without sacrificing your users privacy

  • Hosted login UI
  • Unlimited social login connections
  • Passwordless login, WebAuthn
  • Customizable React components
Get started

Your team's time is precious. Let them focus on your core business.

Access control

Identity is the first step. That's the easy part. Knowing which features, actions, or data the user may access is what makes your software work.

Granular, resource-based access

Fine-grained permissions for your application

  • Granular, role and resource-based access
  • Permission and resource nesting
  • User onboarding and invite flow
  • Access control as code
  • Clean separation between identity and permissions

Secure your endpoints with Authress

  • Object-level access control
  • Access audit trail
  • Service to service authorization
Authorize Order Creation

   import { AuthressClient } from '@authress/sdk';

   const authress = new AuthressClient(
     authressApiUrl: '',
     apiKey: 'eyJrZXlJ9U6xxixCDjk9dTi9tZ');

   // Verify
   await authress.userPermissions.authorizeUser(
     userId, 'orders', 'orders:create');

Authorization. It's not about who you are, it's what you can do.

Developer experience

Made for software engineers

  • First-class REST API
  • SDKs in multiple languages
  • Terraform provider
  • Offline test instance
Developer tools

You can't revoke identity, but you can revoke access.

Your users' data is safe with us.

  • All data encrypted in transit and at rest
  • All data replicated across multiple data centers
  • Automatic failover and disaster recovery
  • Data processing compliant with European GDPR
  • Option to restrict data storage to specific region

What our customers say:

Keep your architecture clean. Decouple identity from access from your business logic.

Authress helps when your software needs to:

  • … support multiple types of users
  • … restrict access to some parts while keeping other parts open
  • … work within enterprise IT environments
  • … be extra secure

With Authress, you don't have to:

  • Write code that's not your business logic
  • Install anything or maintain a server
  • Rewrite your code once you reach next level of scale

We take care of difficult things for you:

  • Data availability, backups, resiliency
  • Performance, caching, service uptime
  • Permission lookups, schema changes

With Authress, you pay only for what you use.

0.0012 USD per call, billed monthly
  • Only authentication and authorization calls are billable
  • Everything else and additional configuration is free
  • No enterprise tax - you get all the features out of the box
  • Dashboard with overview of your current and projected spend
  • First 1000 billable calls are free
Dashboard with overview of your current usage

Default SLAs for all customers, no matter the size

  • 99.995% availability SLA for default regions
  • Response time on developer support queries within 24h
Try it out