Your identity,verified once —trusted everywhere.
Kiauth replaces passwords and OTPs with a single biometric login — for every app you use, and for the AI agents you let act on your behalf. You hold the keys. You see every session. You revoke in one tap.
Phone + biometric · No passwords · DPDP-ready · You own the graph
WHY KIAUTH EXISTS
Three broken things.
One fix.
Forgotten. Reused. Breached. You don't know which websites you're still logged into right now.
Every login. Every time. On 5 lakh monthly users that's ₹1 lakh gone every month. Just to say hello.
AI tools are accessing your accounts. You gave them your passwords. You don't know what they did with them.
WHAT KIAUTH DOES
Three things, done properly.
Each one is a complete reason to integrate on its own. Together they replace the password, the bot problem, and the session you could never see.
Verified Human
Know the person signing up is a real, unique, Aadhaar-verified human.
- One human, one account — not even by deleting and re-registering
- Graded assurance, never a bare true/false
- Verified once, reused everywhere — in about three seconds
- A signed receipt you can hand a regulator, with no personal data in it
Signup & Login
Passwordless sign-in. The user approves on their phone with a biometric.
- No password database to store, leak, or reset
- Phishing-resistant: a device-bound key signs each approval
- Drop-in web and React Native SDKs, or standard OpenID Connect
- You never hold a secret in a browser or a mobile binary
Sessions, everywhere
One dashboard of every app a person is signed into. Revocable in one tap.
- The user revokes a session; your server is told, and signs them out too
- Surface logins that never went through Kiauth at all
- Cross-app risk signals no single-app auth library can compute
- Idle and absolute expiry, enforced on every token refresh
Kiauth also does workforce SSO over OIDC, AI-agent delegation, and person-to-person verification. They are built, supported, and yours to switch on — they are simply not what we ask you to buy first.
Verify once.
Login everywhere.
You
phone + biometric
request
Kiauth
verify · consent
scoped token
App / agent
session granted
Verify your Aadhaar
One time. In the Kiauth app. 60 seconds. Your Aadhaar number is confirmed then permanently deleted.
Register your device
Your fingerprint or face becomes your key. It never leaves your phone.
Scan any QR code
See a Kiauth button on any website or app. Scan. Done.
You're in.
Biometric approved. Session created. Zero passwords.
Consent
Zomato wants to verify you
Tap to approve with biometric
Kiauth
FOR INDIVIDUALS
Every account.
One dashboard.
See every website you're logged into.
Revoke anything with one tap.
Know when something logs in that isn't you.
Aadhaar-verified identity
Not just a phone number. Government-confirmed you.
One-tap logout everywhere
See Zomato, Amazon, LinkedIn, all your apps. Revoke any session, anywhere, instantly.
Session alerts
Amazon was just accessed on a Windows PC in Delhi. Was that you?
No passwords ever
Your face and your Aadhaar. That's your entire identity on the internet.
Free. Always.
Sessions
Zomato
Kiauth
Amazon
Email (bridged)
Netflix
Email (bridged)
Kiauth
FOR BUSINESSES
Ten lines.
Verified users.
1import { KiauthButton, isProductionTrustworthy } from '@kiauth/web-sdk'23kiauth.init({4 clientId: 'your-client-id',5 onSuccess: (user) => {6 // Never trust the bare boolean — it is true for test identities too.7 if (!isProductionTrustworthy(user)) return8 // A real, unique, Aadhaar-verified human.9 // user.userToken is stable + pairwise to your app.10 createSession(user)11 }12})1314<KiauthButton />75% cheaper. No SMS infrastructure. No OTP delivery failures.
Every Kiauth user is Aadhaar-verified. No bots. No burner numbers.
We verify identity. You own the data. We never hold your customers.
FOR ENTERPRISE
Your employees.
Verified.
Not just logged in.
Microsoft Authenticator proves your employee has a phone.
Kiauth proves it's actually them.
Aadhaar-backed identity on every single access event.
Designed to integrate with:
Replace Authenticator
Drop-in OIDC integration with Okta, Azure AD, Ping. Employees approve access from their personal Kiauth app. No new app to install.
Instant offboarding
One API call. Employee is removed from every app simultaneously. Webhooks fire in under a second.
AI Agent Control
Set policies on which AI tools your employees can authorise. Every agent action is logged and traceable.
THE AGENT ERA
You gave the agent
your password.
Give it a grant instead.
AI agents are logging into your accounts with OAuth when it's polished — and your raw credentials when it isn't. Either way, you can't see what they did, and you can't take it back.
Kiauth issues each agent a scoped, time-boxed grant, approved with your biometric. The agent never sees a password. You watch every action — and revoke in one tap.
- Scoped
- Revocable
- Audited
- MCP-native
Issued by Kiauth
Agent access grant
Grantee
Claude · Anthropic
agt_3f9c…a21
read.sessions
list & monitor active logins
write.permissions
cannot change access or roles
expires in 4h
auto-revokes, then re-consent
every action logged
full, exportable audit trail
mandate · max ₹5,000 / action
Time remaining
3h 41m
THE KIAUTH GRAPH
One identity for everything
you — and your agents — touch.
People and agents. Apps and enterprises. Each one a scoped, revocable connection on a single graph that belongs to you — and that you can sever in a tap.
Built on paranoia.
In a good way.
Aadhaar never stored
Verified then deleted immediately. We keep only a one-way hash.
Private key never leaves device
Your biometric key lives in your phone's Secure Enclave. We never see it.
Per-business identity
Zomato and Amazon get different IDs for you. Neither knows you use the other.
DPDP Act compliant
We are a verification processor. You remain the Data Fiduciary.
SIM binding
Every account is tied to your physical SIM. No remote registrations.
Full audit trail
Every login, every agent action, every session. All visible to you.
FOR DEVELOPERS
Auth you don't have to
think about.
Typed SDKs, a clean REST API, signed webhooks, and a sandbox — documented the way you wish every provider documented theirs.
1import { KiauthButton, isProductionTrustworthy } from '@kiauth/web-sdk'23export default function Login() {4 return (5 <KiauthButton6 clientId="kia_live_xxx"7 scope={['name', 'email']}8 onSuccess={(user) => {9 if (!isProductionTrustworthy(user)) return10 createSession(user)11 }}12 />13 )14}SDK
01npm i @kiauth/web-sdkDrop-in for React, Vue, and vanilla JS. A verified login button in about ten lines.
npm package →REST API & webhooks
02POST /v1/sessionsServer-to-server auth, signed webhooks for every event, and OIDC for the platforms you already run.
API reference →Sandbox
03mode: "sandbox"Simulated verifications and agent grants. Build the whole flow before a single real Aadhaar call.
Try the sandbox →developers.kiauth.com
Everything you need to ship — docs, API reference, SDK guides, and a live sandbox.
Pricing that makes
your CFO happy.
Starter
per authentication
- Pay per use
- Up to 50K auths/month
- Basic webhooks
- Standard support
Growth
per user / month
- Unlimited authentications
- Advanced webhooks
- Session bridge
- Analytics dashboard
- Priority support
Enterprise
- Everything in Growth
- Work Tab (employee identity)
- OIDC/SAML integration
- AI Agent policies
- SLA + dedicated support
- Custom contract
Compare to OTP: on 5 lakh monthly logins, Kiauth Starter saves ₹75,000/month vs SMS OTP. Full comparison →