Modern Authentication
for Web3 Applications

Bitcoin-based authentication with zero server secrets. Your keys, your identity.

How It Works

Simple, secure authentication in three steps

Create Identity

Generate your cryptographic identity locally in your browser

Sign Challenge

Prove ownership by signing a cryptographic challenge

Access Granted

Receive a secure session token for authenticated access

Cross-Device Sync

Backup and restore your identity across all your devices with encrypted cloud sync

Universal Compatibility

Works with any OAuth 2.0 compatible application or service

Why Choose Sigma Auth?

The most secure, open, and cost-effective authentication solution

Universal

Deploy as a standalone service or embed into existing applications. Works with any framework or platform.

Self-hosted

Runs entirely on your infrastructure. Deploy on Node.js, Bun, AWS Lambda, or Cloudflare Workers.

Standards-based

Implements OAuth 2.0 spec and web standards. Any OAuth client can use it.

Customizable

Prebuilt themeable UI that you can customize or opt out of entirely.

Cross Device Restore

Restore your identity across all your devices with just your password.

Backup File Import

Handles all backup file formats. Import your backup file to sign in.

On-Chain Profiles

Supports BAP profiles automatically when you sign in with associated keys.

For Developers

Use our public OAuth 2.0 API, or host your own

Quick Start

1

Redirect to authorization endpoint

Point users to /login with your client_id and redirect_uri

2

User completes Bitcoin authentication

Users sign with Bitcoin keys or restore from backup, returns authorization code

3

Exchange code for JWT access token

POST to /token endpoint with authorization code

4

Use token for authenticated API calls

Include Bearer token in Authorization header

API Endpoints

OAuth 2.0 Core

GET/login
POST/token
GET/userinfo

Authentication

POST/loginBitcoin
GET/google/callbackGoogle
GET/github/callbackGitHub

Backup & Restore

GET/backup
POST/backup
GET/backup/status
GET/backup/oauth
POST/backup/link-oauth