Identity infrastructure
for the agent era

Multi-tenant SSO provisioned by conversation. Describe what you want in plain language — get a working auth stack in under 5 minutes. For AI agents and developers alike.

Download Agent Guide Get Started

How it works

1

Describe what you need

Tell us your company name, domain, which login providers you want (Google, Microsoft, SAML...), and what roles your app needs. Plain language or API call — your choice.

2

We provision everything

Keycloak realm, OIDC clients, database schema, roles, identity providers — all created automatically. No clicking through dashboards.

3

Get working code

Receive a complete integration kit: environment variables, auth client code, backend middleware, and protected route examples. Copy into your project and ship.

Choose your path

Works the same whether you're an AI agent or a human developer.

I have an agent

Claude Code, OpenClaw, Cursor, or any MCP-capable agent

  • Download the agent guide — one file, full API reference
  • Connect via MCP or REST
  • Your agent provisions tenants and generates code
  • Agent tokens for scoped, auditable delegation
curl https://auth.moyaz.ai/guide > CLAUDE.md

Or connect directly via MCP:

{ "mcpServers": { "moyaz-identity": { "type": "streamable-http", "url": "https://auth.moyaz.ai/mcp" } } }
Download Guide

I'm a developer

React, Next.js, SvelteKit, Python, or any OIDC-compatible stack

  • Create a tenant via API or ask us
  • Get your .env, client code, and middleware
  • Standard OIDC/OAuth2 — works with any framework
  • Google, Microsoft, Apple, SAML — one API call each
POST https://auth.moyaz.ai/tenants { "slug": "myapp", "name": "My App", "contact_email": "dev@myapp.com", "roles": ["admin", "user"], "idps": [{ "type": "google" }] }
API Docs

Everything you need

Multi-tenant isolation

Each customer gets their own Keycloak realm and Postgres schema. Full data isolation by default.

Any identity provider

Google, Microsoft, Apple, Okta, SAML, or generic OIDC. Add them with one API call.

Agent tokens

Scoped, time-boxed, auditable tokens for AI agents. Delegation chains track every action back to the human.

PKCE by default

Public OIDC clients use PKCE (S256). No client secrets in your frontend. Secure out of the box.

Integration kits

Generate complete auth code for React, Next.js, SvelteKit, or Python. Copy, paste, ship.

MCP native

13 MCP tools for identity management. Your agent can provision, verify, and audit — all via tool calls.

Full audit trail

Every provisioning action logged with the original command. Agent actions traced through delegation chains.

No vendor lock-in

Standard OIDC/OAuth2. Standard JWTs. Standard JWKS. Move to any provider if you outgrow us.

Pricing

Start free. Scale when you need to.

Free

$0

For side projects and testing

  • 1 tenant
  • 100 users
  • Google login
  • Agent tokens
  • MCP access
  • Integration kit

Pro

$29 /mo

For growing apps

  • 5 tenants
  • 10,000 users
  • All identity providers
  • Custom roles
  • Agent delegation chains
  • Priority support

Business

$99 /mo

For teams and agencies

  • 25 tenants
  • 100,000 users
  • SAML SSO
  • Custom themes
  • Webhook events
  • SLA guarantee

Enterprise

Custom

For large organizations

  • Unlimited tenants
  • Unlimited users
  • Dedicated instance
  • On-prem deployment
  • Custom integrations
  • 24/7 support

Ready to ship auth?

Stop building login pages. Start shipping your product.

Get the Agent Guide Read the API Docs