AuthOS

The Auth Operating System for 
multi-tenant products

Self-hosted identity infrastructure that combines a Rust API, TypeScript SDK, framework adapters, and enterprise identity features in one platform.

Single Binary
deployment
Backend-specific pre-1.0 builds
Typed SDKs
integration packages
TypeScript, React, Vue, Node
Self-Hosted
deployment model
Run on infrastructure you operate
Public Source
inspect the implementation

Claims should be reproducible

AuthOS is pre-1.0. Performance numbers will be published only with a public harness, environment, raw results, and tested limits.

Project status Readiness roadmap Security policy
Pre-1.0
Maturity
Evidence gates before stable claims
3
Build variants
Database support windows under validation
Public
Validation
Results linked before claims
Rust
API core
Memory-safe systems language

Identity building blocks for B2B SaaS

Current pre-1.0 capabilities for B2B SaaS. Protocol conformance and interoperability evidence is still being expanded.

Multi-tenant Native

Organizations, teams, and role-based access built in. Not a bolt-on.

Self-Hostable

Run AuthOS on infrastructure you operate. Deployment boundaries vary by database and topology.

Enterprise SSO

Beta SAML IdP and upstream OIDC federation. Upstream SAML response processing is unsupported until signature verification is implemented.

Passkeys & MFA

WebAuthn, TOTP, and email-verification flows. Security abuse-case evidence is still being expanded.

Fine-grained Permissions

Google Zanzibar-style ReBAC. Define who can do what, on what resource.

Observable

Prometheus metrics, structured logs, and audit-event surfaces for operators to evaluate.

Integrate with typed SDKs

Illustrative React, Vue, Node.js, and framework-neutral integration snippets.

Read the docs →
import { useAuthOS, SignIn } from '@drmhse/authos-react';function App() {  const { isAuthenticated } = useAuthOS();  if (!isAuthenticated) {    // Now supports OAuth providers!    return <SignIn providers={['github', 'google']} />;  }  return <Dashboard />;}
NORMAL
App.tsx
Top
$ npm install @drmhse/authos-react
$ npm run dev
Development server ready
➜ Local: http://localhost:5173/
➜ Network: use --host to expose
<script setup>import { useAuthOS, SignIn } from '@drmhse/authos-vue';const { isAuthenticated } = useAuthOS();</script><template>  <SignIn v-if="!isAuthenticated" :providers="['github', 'google']" />  <Dashboard v-else /></template>
NORMAL
App.vue
Top
$ npm install @drmhse/authos-vue
$ npm run dev
Vite server started
➜ Local: http://localhost:5173/
import { createAuthMiddleware } from '@drmhse/authos-node/express';import express from 'express';const { requireAuth } = createAuthMiddleware({  baseURL: 'https://sso.example.com'});app.get('/private', requireAuth(), (req, res) => {  res.json({ user: req.auth.claims });});
NORMAL
server.ts
Top
$ npm install @drmhse/authos-node
$ node server.ts
Auth middleware initialized
Listening on port 8080...
import { SsoClient } from '@drmhse/sso-sdk';const sso = new SsoClient({  baseURL: 'https://sso.example.com'});const context = await sso.auth.getContext({  org: 'acme-corp',  service: 'main-app'});const loginUrl = sso.auth.getLoginUrl('github', {  org: 'acme-corp',  service: 'main-app'});
NORMAL
main.ts
Top
$ npm install @drmhse/sso-sdk
$ ts-node main.ts
Authenticated as user@example.com
Token valid. Expires in 1h.

Source-verified guidance for AI agents

Use AuthOS Agent Skills to help coding agents implement, integrate, and operate AuthOS from the public source-verified skill repository.

Application integration

Skills cover the TypeScript SDK, React, Vue, Node.js middleware, service APIs, device flow, and webhook verification.

Tenant administration

Guide agents through services, RBAC, identity providers, custom domains, branding, MFA, SAML, SCIM, and compliance surfaces.

Platform operation

Help agents deploy and maintain AuthOS with health checks, metrics, token refresh, key rotation, jobs, and webhook delivery operations.

Read the skills guide View skills on GitHub

Illustrative operator view

AuthOS exposes API, metrics, and audit-event surfaces that a consumer-owned console can use. The preview below is not included in public release artifacts and uses simulated data; it is not live telemetry, a security result, or benchmark evidence.

Illustrative consumer-owned UI — not a shipped AuthOS console; values are simulated and are not live telemetry or benchmark results.

API Request Rate (Demo) Simulated
4,280
Global Latency (Demo) Simulated
24ms
Active Sessions (Demo) Simulated
892,104
Security Events (Demo) Simulated
12,402

Ready to evaluate AuthOS?

Compare your requirements with the current support matrix and try the documented integration paths.

Read the Docs Star on GitHub