AuthSec is an Agent-Native Authentication and Authorization platform designed for AI agents, MCP servers, and modern applications.
It provides identity, authentication, authorization, secrets management, and workload identity for autonomous systems and services.
- 🔐 Agent authentication using OIDC / SAML2 SSO
- 🤖 Headless authentication using CIBA
- 🛡 RBAC authorization for AI agents and services
- 🔑 Secrets storage and retrieval
- 🔗 SPIFFE workload identity
- 👥 Multi-tenant IAM platform
- 🔑 Passkeys / WebAuthn MFA
AuthSec consists of two main components:
| Component | Repository |
|---|---|
| Backend API | https://github.com/authsec-ai/authsec-ai |
| Web Console | https://github.com/authsec-ai/authsec-ui |
Both services must be running.
- Go 1.25+
- PostgreSQL 14+
- (Optional) Redis
- (Optional) HashiCorp Vault
git clone https://github.com/authsec-ai/authsec-ai.git
cd authseccp .env.example .envMinimum configuration:
DB_NAME=authsec_db
DB_USER=authsec
DB_PASSWORD=password
DB_HOST=localhost
DB_PORT=5432
WEBAUTHN_RP_NAME=AuthSec
WEBAUTHN_RP_ID=localhost
WEBAUTHN_ORIGIN=http://localhost:5173go run ./cmd/AuthSec backend will start on:
http://localhost:7468
Health check:
curl http://localhost:7468/authsec/uflow/health- Node.js 20+
- npm 10+
git clone https://github.com/authsec-ai/authsec-ui.git
cd authsec-uinpm installcp .env.example .envEdit .env:
VITE_API_URL=http://localhost:7468
VITE_APP_NAME=AuthSecnpm run devThe UI will be available at:
http://localhost:5173
+----------------------+
| AuthSec UI |
| React + Vite + TS |
+----------+-----------+
|
|
+----------v-----------+
| AuthSec API |
| Go + Gin |
+----------+-----------+
|
+-------------+-------------+
| | |
PostgreSQL Redis Vault
Full documentation is available at:
👉 https://docs.authsec.dev/getting-started/
The documentation includes:
- Platform overview
- Authentication setup
- RBAC configuration
- AI agent authentication
- SPIFFE workload identity
- Security best practices
- Integration guides
AuthSec documentation is open source and maintained in the following repositories.
| Repository | Description |
|---|---|
| https://github.com/authsec-ai/authsec-community-docs | Platform documentation |
| https://github.com/authsec-ai/authsec-community-apidocs | API reference documentation |
Developers can update documentation when contributing features.
If you are contributing to AuthSec and want to update the documentation alongside your code changes:
git clone https://github.com/authsec-ai/authsec-community-docs.git
cd authsec-community-docsFollow the instructions in that repository to run the docs locally and submit a pull request with your changes.
git clone https://github.com/authsec-ai/authsec-community-apidocs.git
cd authsec-community-apidocsUpdate API specs and examples according to your changes before submitting a pull request.
If you prefer not to self-host AuthSec, you can use the managed platform:
| Repository | Description |
|---|---|
| https://github.com/authsec-ai/authsec-ai | Core IAM backend |
| https://github.com/authsec-ai/authsec-ui | Web console |
| https://github.com/authsec-ai/sdk-authsec | SDK for agents and services |
| https://github.com/authsec-ai/authsec-community-docs | Documentation |
| https://github.com/authsec-ai/authsec-community-apidocs | API documentation |
Apache License 2.0