Product

Developer-Centric Headless OAuth/OIDC Engine

Streamline development and operation of your authorization system by delegating OAuth 2.0/OpenID Connect (OIDC) protocol operations and token management to Authlete. Take full control of your architecture and user experience.
Get StartedTalk to an Expert

Maximum Freedom and Control

  • Simply integrate Authlete to implement OAuth/OIDC if you want to:
  • ✓ Use programming language and framework of your choice
  • ✓ Preserve your existing authentication system
  • ✓ Design user authentication UI/UX without restrictions
  • ✓ Build complex authentication and authorization flows
  • ✓ Conform to the latest or high security profiles
  • ✓ Keep user credentials in-house

Developer-First Features

Authlete provides all functions via Web APIs, enabling you to seamlessly introduce OAuth 2.0/OIDC server functionality into your service.

See the full list of our APIs

OAuth/OIDC Protocol Operations

Authlete generates access tokens on behalf of your OAuth/OIDC server and guides you through each step of protocol processing.

Token Lifecycle Management

Store your access tokens in our token management database. We manage their entire lifecycle from creation to deletion.

Unified Settings Management

Streamline client and service configurations, including settings for endpoints, tokens and claims, and key management.

Intuitive Management Console

Easily set up social login, multi-factor authentication, and granular access control for your team with Authlete's intuitive dashboard.

Flexible Deployment

Deploy Authlete on a managed shared or dedicated cloud, or as a self-managed service. Save costs and fail-proof with our multi-tenancy and multi-region support.

Extensive Specification Support

Authlete quickly implements the latest OAuth/OIDC specifications and provides comprehensive support for OAuth/OIDC extensions, including FAPI (FAPI 1.0 and FAPI 2.0), Client-Initiated Backchannel Authentication (CIBA), and OpenID for Verifiable Credentials Issuance (OID4VCI).

Certification and Conformance

General
Ecommerce Webflow Template - Poppins
API & Integration
Ecommerce Webflow Template - Poppins
Privacy
Ecommerce Webflow Template - Poppins
Documentation
Ecommerce Webflow Template - Poppins
OpenID Certification
Conformance
Open ID Provider
Ecommerce Webflow Template - Poppins
  • Basic OP
  • Implicit OP
  • Hybrid OP
  • Config OP
  • Dynamic OP
  • Form Post OP
FAPI OpenID Provider
Ecommerce Webflow Template - Poppins
  • Financial-grade API (FAPI) 1.0 Second Implementer’s Draft
    - FAPI R/W OP w/MTLS
    - FAPI R/W OP w/Private Key
  • Financial-grade API (FAPI) 1.0 Final
    - FAPI Adv. OP w/MTLS
    - FAPI Adv. OP w/MTLS, PAR
    - FAPI Adv. OP w/Private Key
    - FAPI Adv. OP w/Private Key, PAR
    - FAPI Adv. OP w/MTLS, JARM
    - FAPI Adv. OP w/Private Key, JARM
    - FAPI Adv. OP w/MTLS, PAR, JARM
    - FAPI Adv. OP w/Private Key, PAR, JARM
  • UK Open Banking (Based on FAPI 1 Advanced Final)
    - UK-OB Adv. OP w/MTLS
    - UK-OB Adv. OP w/Private Key
  • Australia CDR (Based on FAPI 1 Advanced Final)
    - AU-CDR Adv. OP w/Private Key
    - AU-CDR Adv. OP w/Private Key, PAR
  • Brazil Open Banking (Based on FAPI 1 Advanced Final)
    - BR-OB Adv. OP w/MTLS
    - BR-OB Adv. OP w/Private Key
    - BR-OB Adv. OP w/MTLS, PAR
    - BR-OB Adv. OP w/Private Key, PAR
    - BR-OB Adv. OP w/MTLS, JARM
    - BR-OB Adv. OP w/Private Key, JARM
    - BR-OB Adv. OP w/MTLS, PAR, JARM
    - BR-OB Adv. OP w/Private Key, PAR, JARM
    - BR-OB Adv. OP DCR
  • Financial-grade API (FAPI) 1.0 Second Implementer’s Draft
    - FAPI R/W OP w/MTLS
    - FAPI R/W OP w/MTLS, PAR
    - FAPI R/W OP w/Private Key
    - FAPI R/W OP w/Private Key, PAR
    - UK-OB R/W OP w/MTLS
    - UK-OB R/W OP w/Private Key
    - AU-CDR R/W OP w/Private Key
    - AU-CDR R/W OP w/Private Key, PAR
FAPI-CIBA OpenID Provider
Ecommerce Webflow Template - Poppins
  • FAPI-CIBA OP Poll w/MTLS
  • FAPI-CIBA OP Poll w/Private Key
  • FAPI-CIBA OP Ping w/MTLS
  • FAPI-CIBA OP Ping w/Private Key
Authlete Complies with ISO/IEC 27001
OAuth 2.0 Core Specifications
Ecommerce Webflow Template - Poppins
  • RFC 6749: The OAuth 2.0 Authorization Framework
  • RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage
OAuth 2.0 Extensions
Ecommerce Webflow Template - Poppins
  • OAuth 2.0 Multiple Response Type Encoding Practices
  • OAuth 2.0 Form Post Response Mode
  • RFC 7523: JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants
  • RFC 8705: OAuth 2.0 Mutual TLS Client Authentication and Certificate Bound Access Tokens  
  • RFC 9449: OAuth 2.0 Demonstrating Proof of Possession (DPoP)  
  • OAuth 2.0 Attestation-Based Client Authentication  
  • RFC 7636: Proof Key for Code Exchange by OAuth Public Clients (PKCE)  
  • RFC 7591: OAuth 2.0 Dynamic Client Registration Protocol  
  • RFC 7592: OAuth 2.0 Dynamic Client Registration Management Protocol  
  • RFC 8628: OAuth 2.0 Device Authorization Grant  
  • RFC 8693: OAuth 2.0 Token Exchange  
  • RFC 8707: Resource Indicators for OAuth 2.0  
  • RFC 9101: JWT-Secured Authorization Request (JAR)  
  • RFC 9126: OAuth 2.0 Pushed Authorization Requests (PAR)  
  • RFC 9470: OAuth 2.0 Step Up Authentication Challenge Protocol  
  • OAuth 2.0 Rich Authorization Requests (RAR)  
  • Grant Management for OAuth 2.0  
  • RFC 7009: OAuth 2.0 Token Revocation  
  • RFC 7662: OAuth 2.0 Token Introspection  
  • RFC 8707: Resource Indicators for OAuth 2.0  
  • RFC 9207: OAuth 2.0 Authorization Server Issuer Identification  
OpenID Connect Specifications
Ecommerce Webflow Template - Poppins
  • OpenID Connect Core 1.0
  • OpenID Connect Discovery 1.0
  • OpenID Connect Dynamic Client Registration 1.0
  • OpenID Connect Client Initiated Backchannel Authentication Flow - Core 1.0
  • OpenID Connect Core Error Code unmet_authentication_requirements
  • OpenID Connect for Identity Assurance 1.0
  • OpenID Connect Federation 1.0  
FAPI
Ecommerce Webflow Template - Poppins
  • Financial-grade API - Part 1: Read-Only API Security Profile  
  • Financial-grade API - Part 2: Read and Write API Security Profile  
  • Financial-grade API: JWT Secured Authorization Response Mode for OAuth 2.0 (JARM)  
  • Financial-grade API: Client Initiated Backchannel Authentication Profile  
  • FAPI 2.0 Security Profile  
  • FAPI 2.0 Message Signing  
  • FAPI 2.0 HTTP Signatures  
Open Banking
Ecommerce Webflow Template - Poppins
  • UK Open Banking Security Profile  
  • Australia Consumer Data Right Security Profile  
  • Open Banking Brasil Financial-grade API Security Profile  
  • SAMA/KSA FAPI profile for Saudi Arabia Open Banking
JWT
Ecommerce Webflow Template - Poppins
  • JWT Response for OAuth Token Introspection
  • Selective Disclosure for JWTs  
  • SD-JWT-based Verifiable Credentials (SD-JWT VC)  
  • Transformed Claims  
Verifiable Credentials
Ecommerce Webflow Template - Poppins
  • ISO/IEC 18013-5:2021 Personal identification — ISO-compliant driving license Part 5: Mobile driving license (mDL) application
  • OpenID for Verifiable Credential Issuance 1.0 Implementer's Draft 1  
  • SD-JWT-based Verifiable Credentials (SD-JWT VC)  
Authlete Complies with ISO/IEC 27001
OAuth 2.0 Core Specifications
Ecommerce Webflow Template - Poppins
  • RFC 6749: The OAuth 2.0 Authorization Framework
  • RFC 6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage
OAuth 2.0 Extensions
Ecommerce Webflow Template - Poppins
  • OAuth 2.0 Multiple Response Type Encoding Practices
  • OAuth 2.0 Form Post Response Mode
  • RFC 7523: JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants
  • RFC 8705: OAuth 2.0 Mutual TLS Client Authentication and Certificate Bound Access Tokens
  • RFC 9449: OAuth 2.0 Demonstrating Proof of Possession (DPoP)
  • OAuth 2.0 Attestation-Based Client Authentication
OpenID Connect Specifications
Ecommerce Webflow Template - Poppins
  • OpenID Connect Core 1.0
  • OpenID Connect Discovery 1.0
  • OpenID Connect Dynamic Client Registration 1.0
  • OpenID Connect Client Initiated Backchannel Authentication Flow-Core 1.0
    need to add 3 more here
FAPI
Ecommerce Webflow Template - Poppins
  • Financial-grade API-Part 1: Read-Only API Security Profile
  • Financial-grade API-Part 2: Read and Write API Security Profile
  • Financial-grade API: JWT Secured Authorization Response Mode for OAuth 2.0 (JARM)
  • Financial-grade API: Client Initiated Backchannel Authentication Profile
Open Banking
Ecommerce Webflow Template - Poppins
  • UK Open Banking Security Profile
  • Australia Consumer Data Right Security Profile
  • Open Banking Brasil Financial-grade API Security Profile
  • SAMA/KSA FAPI profile for Saudi Arabia Open Banking
JWT
Ecommerce Webflow Template - Poppins
  • JWT Response for OAuth Token Introspection
  • Selective Disclosure for JWTs
  • SD-JWT-based Verifiable Credentials (SD-JWT VC)
  • Transformed Claims
Verifiable Credentials
Ecommerce Webflow Template - Poppins
  • ISO/IEC 18013-5:2021 Personal identification-ISO-compliant driving license Part 5: Mobile driving licence (mDL) application
  • OpenID for Verifiable Credential Issuance 1.0 Implementer's Draft 1
  • SD-JWT-based Verifiable Credentials (SD-JWT VC)

Why Authlete?

Authlete offers greater flexibility, higher cost-effectiveness, and superior support for OAuth/OIDC extensions compared to Identity as a Service (IDaaS) and open source software (OSS) solutions.
Authlete
IDaaS
OSS
Front-End Flexibility
Complete Freedom
Limited
Limited
Deployment
Managed shared or dedicated cloud, or Self-managed
Managed cloud
Self-managed
Cost
Medium
High
Low
Supported OAuth/OIDC Extensions
Extensive
Limited
Limited
Technical Support
Available
Available
Not Available
Start building your authorization solution with Authlete today.
Product
Features
Certification and Conformance
Spec Sheet
Pricing
Resources
Developers
Management Console
API Explorer
Developer Documentation
Knowledge Base
Release Notes
Authlete on Github
JWK Generator
JOSE Generator
Company
Overview
Leadership
Customers
Careers
News
Contact
Terms & Conditions
Privacy Policy
Service Status
© Copyright 2025 Authlete, Inc.  All rights reserved.