authpi.com

What It Is

AuthPI is positioned as managed identity infrastructure for SaaS, covering user, session, organization, credential, and event management. Built on open standards such as OAuth 2.0, OIDC, PKCE, JWT, WebAuthn, CloudEvents, and OpenAPI, it aims to help developers quickly build login, enterprise SSO, multi-tenant organizations, and machine-to-machine authentication through a unified API.

Core Capabilities and Security

In terms of protection scope, AuthPI is closer to an IAM/CIAM platform than a traditional perimeter security product. It supports social login, enterprise OIDC SSO, passkeys, magic links, email OTP, password login, and TOTP MFA. For session security, it offers refresh token reuse detection, device fingerprinting, configurable session timeouts, and immediate revocation. API Keys and Personal Access Tokens support organization-level scopes, rotation, revocation, and audit logs, making them suitable for SaaS integration scenarios.

Deployment, Compliance, and Integrations

The default deployment model is fully managed, running on Cloudflare’s global edge network. The copy emphasizes low latency, auto-scaling, DDoS protection, and high availability. The Enterprise plan can optionally be deployed on-premises or in a private cloud. On compliance, it only states that GDPR, LGPD, and PIPL are handled at the architecture level, with no disclosed formal certifications such as SOC 2 or ISO 27001. Its integration capabilities are strong: it supports any OIDC IdP, includes built-in Google, GitHub, Microsoft, and Apple integrations, and provides OpenAPI and TypeScript types.

Pricing and Support

During the current beta, AuthPI is free and does not require a credit card. The site mentions both a “10,000 MAU free tier” and a Free plan with “1,000 MAU,” so the actual allowance should be confirmed in the dashboard or with sales. The Pro plan is not yet available, while Enterprise is custom-priced and includes a dedicated support engineer, SLA, and advanced security controls. For support, the free tier relies on community support; priority support requires Pro or above.

Pros, Cons, and Who It’s For

Its strengths are a comprehensive identity feature set, strong adherence to standards, and rich event webhooks. It is especially well suited to B2B SaaS use cases involving multi-tenancy, enterprise SSO, organization-level API keys, and syncing identity events to CRM/SIEM systems. Its weaknesses are that it is still in beta, and maturity, compliance evidence, SLA commitments, and pricing stability remain to be verified. The text does not specify accessibility from China; because it relies on Cloudflare’s global edge, actual connectivity, payment options, and data export requirements should be tested. If you need China localization or more mature commercial support, alternatives such as Auth0, Clerk, WorkOS, Keycloak, and Logto are worth comparing.