Your App.
Every Identity Provider.
Any SAML or OIDC enterprise connection you need.
Plus, the same integration makes it easy to add social logins.
INTEGRATES WITH
AuthBox supports all major identity providers and protocols including: Okta, Azure AD, Auth0, Google Workspace, Duo, PingIdentity, OneLogin, JumpCloud, Keycloak, Shibboleth, OpenID Connect, and SAML.
SAML Made Easy
Security Assertion Markup Language (SAML) is an XML-based standard with unique development challenges. AuthBox simplifies SAML for you.
Attribute Mapping
Map custom user attributes from each identity provider to your application.
Certificate Management
AuthBox automatically manages your signing and encryption keys and certificates.
Signature Verification
AuthBox ensures the authenticity of SAML assertions and responses.
Assertion Decryption
The identity provider encrypts the SAML response assertion, and we securely decrypt it.
Popular Social Logins
Easily add social logins in a few clicks with the same integration.
Allow your non-enterprise users to maintain one identity.
AuthBox has integrations with popular social logins including: Google, Apple, Microsoft, GitHub, GitLab, Slack, Facebook, and LinkedIn.
OIDC in Seconds
OpenID Connect (OIDC) is an identity layer built on top of the OAuth2 authorization standard. OIDC enables applications to verify user identities and get basic profile information in a standardized way.
Automatic Configuration
Enter the identity provider's discovery URL, and we'll automatically configure the OIDC connection.
Flexible Connections
Complete control of the OIDC connection, such as scopes, response method and prompt type.
PKCE Flow
Proof Key for Code Exchange (PKCE) is a security feature that mitigates the authorization code interception attack. It's our default OIDC flow.
ID Token Validation
AuthBox validates the ID token's signature, issuer, audience, and expiration time. If the IDP keys are rotated, we automatically update them.
AuthBox Dashboard
Our simple and intuitive admin dashboard allows you to configure SAML and OIDC connections in minutes.
Your Existing App Flow
AuthBox is an SSO connection gateway. No changes to existing registration or login methods are necessary. It's seamless!
SSO Gateway
AuthBox acts as a connection gateway for any of your enterprise SSO or social login methods.
No User Migration
Add AuthBox to your app without migrating your users to a separate management system.
Profile Passthrough
User profiles are not stored or managed by AuthBox. It is flexible without any lock-in.
Plays Nice With Others
Keep your existing sign-in methods such as email login, and supplement with enterprise SSO.
Detailed Audit Trail
View each step of the SAML or OIDC authentication to help debug configuration and user challenges.
Any Framework and Language
The AuthBox integration consists of just two API calls and a redirect.
It is dead simple and will work with any development stack.
AuthBox works with any backend framework, including: Java, .Net, Golang, Ruby, PHP, Laravel, Python, Django, Next JS, Node JS, Nest JS and any language that can make a REST API call.