Bitcoin-based authentication with zero server secrets. Your keys, your identity.
Simple, secure authentication in three steps
Generate your cryptographic identity locally in your browser
Prove ownership by signing a cryptographic challenge
Receive a secure session token for authenticated access
Backup and restore your identity across all your devices with encrypted cloud sync
Works with any OAuth 2.0 compatible application or service
The most secure, open, and cost-effective authentication solution
Deploy as a standalone service or embed into existing applications. Works with any framework or platform.
Runs entirely on your infrastructure. Deploy on Node.js, Bun, AWS Lambda, or Cloudflare Workers.
Implements OAuth 2.0 spec and web standards. Any OAuth client can use it.
Prebuilt themeable UI that you can customize or opt out of entirely.
Restore your identity across all your devices with just your password.
Handles all backup file formats. Import your backup file to sign in.
Supports BAP profiles automatically when you sign in with associated keys.
Use our public OAuth 2.0 API, or host your own
Redirect to authorization endpoint
Point users to /login with your client_id and redirect_uri
User completes Bitcoin authentication
Users sign with Bitcoin keys or restore from backup, returns authorization code
Exchange code for JWT access token
POST to /token endpoint with authorization code
Use token for authenticated API calls
Include Bearer token in Authorization header