All productsAuthentication
Ship the login screen your users already expect.
Passkeys, social, magic links, email codes, passwords, SSO — one surface, one session, one audit trail. Turn methods on without rewriting the front door.
Every sign-in method, one login screen.
Passkey is the default. Social, magic link, email code, and password are one toggle each. SAML stays per-tenant. No conflicting flows, no duplicate sessions, no UX debate every quarter.
Sign-in methods — Acme Corp
7 enabled · passkey is the default
Passkey
WebAuthn · no password
default
Google
OAuth 2.0 · acme workspace
enabled
Microsoft
OIDC · per-tenant scoped
enabled
Email + code
One-time 6-digit · 5 min TTL
enabled
Magic link
Signed URL · 15 min TTL
enabled
Password
Argon2id · 72-char max
fallback
SAML SSO
Enabled per enterprise tenant
per-tenant
Auth methods
Passkey-first
Social OAuth
Email code · link
Password fallback
Watch the flow, not just the outcome.
Every sign-in attempt — method, device, latency, result — traced live. Debug a broken Google callback in seconds. Spot a password-spray before pagers fire.
filterall methodspasskeypasswordfailuresmedian 412 ms · p99 2.8 s
time
method
user
device
latency
result
17:44:02
Passkey
sarah@acme.com
MacBook · Chrome
312 ms
ok
17:43:51
Google
marcus@acme.com
iPhone · Safari
684 ms
ok
17:43:37
Email code
priya@partner.io
Linux · Firefox
1.2 s
ok
17:43:21
Password
tom@acme.com
Windows · Edge
4.8 s
deny
17:43:04
Magic link
lee@acme.com
iPad · Authaz
2.1 s
ok
17:42:48
Passkey
val@acme.com
MacBook · Safari
274 ms
ok
Flow inspector
Live sign-in feed
Method breakdown
Latency p99
Failure drill-in
Pairs with
Auth is one layer. Here's what goes with it.
Multi-factor Authentication
Step-up after sign-in for privileged actions. Same flow, stronger gate.
Explore
Enterprise SSO
Per-tenant SAML and OIDC, on top of the same session model your product already uses.
Explore
User Management
Every sign-in maps to one identity you already track — with factors, sessions, and audit attached.
Explore