Open beta — bring your own OAuth credentials

The free, LLM-friendly
Auth0 alternative.

Drop-in identity for your apps. Bring your own Google, GitHub or OIDC credentials — users see your brand, not ours.

Get started free arrow-right book-open How it works

How AuthCog works

One identity provider, every protocol. Connect any number of relying sites under your account.

globe

One subdomain per site

Each app gets {name}.authcog.com with its own JWT secret, providers and consent screen.

plug

Any provider

Built-in Google, Facebook, GitHub, Microsoft. Custom OAuth2/OIDC via JSON. SAML through BoxyHQ.

shield-check

Per-site consent

Users explicitly authorize each relying site. GDPR-friendly, audit-ready.

Verify a token in 3 lines

const res = await fetch('https://api.authcog.com/v1/tokens/verify', {
  method: 'POST',
  body: JSON.stringify({ token, site_subdomain: 'my-app' }),
})
const { email, sub } = await res.json()

Free for your first site.

Sign up, point your DNS, ship.

Create account arrow-right