> ## Documentation Index
> Fetch the complete documentation index at: https://stytch.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.

# Authentication and authorization

> Build complete authentication and authorization flows with Stytch's developer-friendly APIs and SDKs.

## Built with developers in mind

Unlike building auth in-house or using basic libraries, Stytch offers a complete solution that prioritizes the developer experience.

* **Flexible integration**: Choose [pre-built UI components](/multi-tenant-auth/build-auth/overview), [headless SDKs](/multi-tenant-auth/build-auth/custom/via-sdk), or [direct API integration](/multi-tenant-auth/build-auth/custom/via-api)
* **No infrastructure to maintain**: We handle scaling, security updates, and uptime
* **Faster time to launch**: Weeks or months of engineering time saved on implementation
* **Enterprise sales ready**: SSO and SCIM integrations that enterprise customers require, with security and compliance built-in
* **Secure by default**: Passwordless options, breach detection, and fraud prevention built-in
* **99.999% uptime SLA**: Enterprise customers get guaranteed uptime with redundancy across multiple regions
* **Built-in observability**: Real-time analytics, audit logs, and webhooks for monitoring auth events
* **Future-proof**: New auth methods and security features added continuously, including [Agent-ready auth](/get-started/guides/ai-agents-and-apps)
* **Expert support**: Direct access to our team for implementation help and troubleshooting

## Authentication methods

Stytch offers both [Consumer Authentication](/consumer-auth/overview) for consumer-facing apps and [Multi-Tenant Authentication](/multi-tenant-auth/overview) for B2B SaaS platforms that need Enterprise-ready features like SSO, SCIM, RBAC and organization management. Support any login method your users expect, with SDKs and APIs that make integration straightforward:

<Columns cols={3}>
  <Card title="OAuth / social login" icon="share-2" href="/consumer-auth/authentication/oauth/overview">
    Pre-configured integrations with major identity providers like Google, Apple, GitHub, Microsoft, and more.
  </Card>

  <Card title="Magic links" icon="mail" href="/consumer-auth/authentication/magic-links/overview">
    Passwordless email authentication with one-click login. Includes smart link detection for enterprise email security.
  </Card>

  <Card title="One-time passcodes" icon="hash" href="/consumer-auth/authentication/mfa/overview">
    Send verification codes via SMS, email, or WhatsApp. Built-in retry logic and rate limiting.
  </Card>

  <Card title="Passkeys & WebAuthn" icon="fingerprint" href="/consumer-auth/authentication/passkeys/overview">
    Modern passwordless auth using biometrics or security keys. Full passkey lifecycle management.
  </Card>

  <Card title="Passwords" icon="lock" href="/multi-tenant-auth/authentication/passwords/overview">
    Traditional password authentication with breach detection, strength requirements, and secure storage.
  </Card>

  <Card title="Mobile biometrics" icon="smartphone" href="/consumer-auth/authentication/mobile-biometrics">
    Native mobile biometric authentication for iOS and Android with seamless session management (B2C API only).
  </Card>
</Columns>

### Enterprise methods

<Columns cols={3}>
  <Card title="SAML SSO" icon="building" href="/multi-tenant-auth/authentication/sso/provider-setup#generic-saml-most-idps">
    Pre-built SAML integrations with Okta, Azure AD, Google Workspace, and custom IdPs.
  </Card>

  <Card title="OIDC SSO" icon="lock-keyhole" href="/multi-tenant-auth/authentication/sso/provider-setup#generic-oidc-most-idps">
    OpenID Connect authentication with automatic discovery and JIT provisioning.
  </Card>

  <Card title="SCIM provisioning" icon="users" href="/multi-tenant-auth/enterprise-ready/scim/overview">
    Automatic user and group sync from workforce identity providers.
  </Card>
</Columns>

## Authorization & access control

Authentication is just the beginning. Stytch provides the tools to manage what users can do:

<Columns cols={2}>
  <Card title="Role-based access control" icon="shield-check" href="/multi-tenant-auth/enterprise-ready/rbac/create-rbac-policy">
    Define custom roles and permissions with flexible RBAC. Assign roles automatically via SCIM or SSO, or let admins manage them.
  </Card>

  <Card title="Organization management" icon="building-2" href="/multi-tenant-auth/enterprise-ready/org-management/overview">
    Multi-tenant architecture with organization isolation, member management, and org-specific auth settings.
  </Card>

  <Card title="Session management" icon="clock" href="/multi-tenant-auth/manage-sessions/overview">
    Flexible session controls with customizable timeouts, JWT issuance, and cross-device sync.
  </Card>

  <Card title="Admin Portal" icon="settings" href="/multi-tenant-auth/enterprise-ready/admin-portal">
    Pre-built UI components for organization admins to manage members, roles, and auth settings.
  </Card>
</Columns>

## Start building

<Columns cols={2}>
  <Card title="Quickstarts" icon="rocket" href="/get-started/quickstart">
    Get your first auth flow working in under 10 minutes with our guided quickstart.
  </Card>

  <Card title="API reference" icon="book-open" href="/api-reference">
    Comprehensive API and SDK documentation with interactive examples and code snippets.
  </Card>
</Columns>