Auth Block

Auth Block

Enterprise-grade authentication that developers love. Stop building auth, start building your product.

RS256 JWTMulti-tenantOIDC ProviderMFA (Email + TOTP)Passwordless OTPAI Agent AuthService TokensreCAPTCHA
Start Using This Block View Documentation
< 10ms
Token Validation
99.99%
Uptime SLA
RS256
JWT Signing
Zero
Vendor Lock-in

Complete Authentication
 Suite

Everything you need to secure your application, organized by feature category

Core Authentication

User registration, login, password management, passwordless email OTP, magic links, and session handling with RS256 JWT tokens.

User RegistrationJWT AuthPasswordless OTPMagic Links

Multi-Factor Authentication

Two channels: zero-friction email OTP and TOTP authenticator apps. 10 backup codes, usage tracking, integrated into all login flows.

Email OTPTOTPBackup CodesQR Setup

Enterprise SSO

Full OIDC Provider with discovery, JWKS, and token endpoints supporting authorization_code, refresh_token, client_credentials, and agent-identity grants. App-level OIDC with per-app discovery.

OIDC ProviderOAuth 2.0Client CredentialsApp-Level OIDC

API & Service Tokens

API keys with AWS Gateway integration plus M2M service tokens (90-day) and agent tokens (24h). CRUD, regenerate, revoke, and usage tracking with up to 100 active tokens per company.

API KeysService TokensAgent TokensAWS Gateway

User Management

Complete admin tools with roles, permissions, and fine-grained access control.

Roles & PermissionsRBACAdmin Tools

Multi-tenant Architecture

True data isolation per tenant with company-level RSA keys for JWT signing.

Data IsolationPer-Tenant KeysScaling

AI Agent Identity

NEW

Register and authenticate AI agents with Ed25519 signature verification. OAuth token exchange with agent-identity grant type, lifecycle management, and RFC 7662 token introspection.

Agent RegistrationEd25519 SignaturesToken IntrospectionScope Validation

Bot Protection

NEW

Inline reCAPTCHA enforcement with per-tenant feature flags. Protects registration, login, passwordless, and password reset endpoints. Kill switch for instant disable without frontend changes.

reCAPTCHA v3Rate LimitingPer-Tenant ToggleKill Switch

Built for Production

Enterprise-ready from day one with industry-standard security and APIs

RS256 JWT Tokens

Asymmetric encryption with company-level RSA key pairs. Public keys exposed via JWKS endpoints for token verification.

  • JWKS public key endpoint
  • Per-company RSA keys

JSON:API Response Format

Standardized API responses following JSON:API specification for consistent integration across all endpoints.

  • Consistent structure
  • Standard error handling

OIDC Provider

OpenID Connect compliant identity provider with discovery, JWKS, and multi-grant token endpoint. Supports app-level OIDC with per-app discovery.

  • Discovery + JWKS endpoints
  • 4 grant types incl. agent-identity
  • Token introspection (RFC 7662)

Trusted by Developers
 Worldwide

From startups to enterprises, developers choose 23blocks Auth because it just works

SnowCheck

Outdoor Recreation Platform

Challenge:

2M+ authentication requests during peak ski season with 10x traffic spikes during weather events

Solution:

Auto-scaling authentication with AWS Gateway integration

Result:

Zero downtime during busiest season, 99.99% uptime maintained

HealthBridge Solutions

Healthcare Technology

Challenge:

HIPAA compliance requirements with detailed audit trails and automatic session termination

Solution:

Built-in HIPAA-compliant authentication with comprehensive audit logging

Result:

Production-ready in 2 weeks, security auditor approval

RideShare.co

Mobility Platform

Challenge:

Track user sessions across multiple devices while maintaining security and reducing friction

Solution:

Device fingerprinting and session management with trusted device features

Result:

70% cost reduction, 3x faster login, 85% less friction

TechCorp Solutions

Enterprise Software

Challenge:

Lost enterprise deals due to missing SSO capabilities and complex Azure AD requirements

Solution:

Multi-tenant SSO with flexible IdP configurations and OIDC provider

Result:

Fortune 100 client onboarded in 4 days, deal closed

Perfect For Your Use Case

From SaaS platforms to enterprise applications, 23blocks Auth scales with your needs

SaaS Platforms

Multi-tenant authentication with tenant isolation and custom branding

  • Data isolation per tenant
  • White-label login pages
  • Unlimited scaling

Enterprise Applications

SSO, compliance, and advanced security features for large organizations

  • OIDC Provider capabilities
  • SOC2 & HIPAA compliance
  • Advanced audit trails

API-First Companies

JWT tokens, API keys, service tokens, and M2M authentication

  • Service tokens (90-day M2M)
  • API key management
  • JWKS + AWS Gateway

AI Agent Platforms

Authenticate AI agents alongside human users with dedicated identity management

  • Agent registration + lifecycle
  • Ed25519 signature verification
  • OAuth agent-identity grant

Start Building Today

Get your first month free. No credit card required. Enterprise authentication without the enterprise complexity.

Start Using Auth Block Read the Docs

Stay in the loop

Get product updates, engineering posts, and new block announcements delivered to your inbox.

No spam. Unsubscribe anytime. Privacy policy.