Open-source auth infrastructure for SaaS and AI apps with OIDC, OAuth 2.1, SSO, and RBAC
- Stars12.2k
- Forks822
- Open Issues181
MPL-2.0
- TypeScript
- SCSS
- JavaScript
About Logto
Logto is open-source authentication and authorization infrastructure for SaaS and AI apps. It helps teams build production auth without handling OIDC and OAuth 2.1 details from scratch, while adding multi-tenancy, enterprise SSO, and RBAC for customer-facing products.
It supports pre-built sign-in flows, customizable UIs, and SDKs for 30+ frameworks. It also covers SAML, social login, MFA, Google One Tap, and integrations for SPAs, web apps, mobile apps, APIs, M2M, and CLI tools. It is ready for Model Context Protocol and agent-based AI architectures.
Logto offers a cloud service and an OSS path for local development through Docker Compose or Node.js with PostgreSQL. It is licensed under MPL-2.0, and the self-hosted setup is described as OSS installation rather than a managed-only service.
Key features
- Multi-tenancy, enterprise SSO, and RBAC
- Pre-built sign-in flows with customizable UIs
- OIDC, OAuth 2.1, and SAML support
- MFA, social login, and Google One Tap
- SDKs for 30+ frameworks and CLI tools
Details
- First released
- 2021
- Platforms
- Web · Docker · CLI
- Deployment
- self-hostable · docker · cloud
- Protocols
- OIDC · OAuth 2.1 · SAML
- Auth features
- SSO · RBAC · MFA
- License
- MPL-2.0