Identity

Features

Every primitive you need.
None you don't.

Qeetid is built around a small set of opinionated primitives: identity, sign-in, permissions, sessions, and audit. Compose them however your product needs.

Platform

Everything you need.
Nothing you don't.

Single sign-on

SAML 2.0, OIDC, Google, Microsoft, Apple, GitHub, and 40+ more — one config away.

Passkeys & MFA

WebAuthn passkeys, TOTP, SMS, and email OTP — phishing-resistant by default.

RBAC & ABAC

Hot-path permission checks in under 30 ms, cached at the edge globally.

Stateful sessions

Cluster-wide revocation. One click signs a user out across every device.

Multi-tenant

Hard isolation per organization. Per-tenant branding, domains, and residency.

Audit & compliance

Immutable logs to your SIEM. SOC 2, ISO 27001, GDPR, HIPAA — all ready.

Runs at the edge

30+ regions worldwide. Sub-50 ms p99 sign-in latency for every user.

Drop-in SDKs

TypeScript, Go, Python, Rust — first-class. React, Next.js, mobile included.

Deep dive

The whole platform, in detail

Sign-in & SSO

  • Email + password with strong defaults (Argon2id, breach checks)
  • Social: Google, Microsoft, Apple, GitHub, GitLab, Facebook, Twitter
  • Enterprise: SAML 2.0, OIDC, Azure AD, Okta, generic IdPs
  • Magic link and email-code passwordless flows

Passkeys & MFA

  • WebAuthn passkeys with platform & cross-device support
  • TOTP authenticator apps with recovery codes
  • SMS and email OTP with rate limits and abuse detection
  • Step-up auth on sensitive actions

RBAC & ABAC

  • Hierarchical roles with permission inheritance
  • Attribute policies evaluated in under 30ms p99
  • Group assignments with time-bounded grants
  • Per-tenant role catalogs

Sessions

  • Stateful sessions with cluster-wide revocation
  • Per-device session inventory for end users
  • Concurrent session limits and idle timeouts
  • JWT bridge for stateless edge use cases

Multi-tenancy

  • Hard isolation per organization at the data layer
  • Per-tenant branding, domains, and email templates
  • Configurable data residency (US, EU, APAC)
  • Tenant-scoped API keys and webhooks

Threat protection

  • Adaptive rate limiting and bot detection
  • Credential stuffing and breach password checks
  • Suspicious IP geolocation and impossible-travel alerts
  • Account lockout and recovery workflows

Audit & observability

  • Immutable audit log with tamper-evident hashes
  • Streaming export to Splunk, Datadog, S3, Kafka
  • OpenTelemetry traces and metrics out of the box
  • Per-request structured logs with PII redaction

Developer experience

  • TypeScript, Go, Python, Rust SDKs — all first-class
  • React, Next.js, Remix, and React Native components
  • Local dev mode with a single-binary emulator
  • Codegen for OpenAPI clients and Terraform

Insights

  • Login funnels and MFA adoption analytics
  • Conversion attribution per provider
  • Anomaly dashboards for security teams
  • Cohort-level retention by sign-in method

Performance

  • Sub-50ms p99 sign-in across 30+ edge regions
  • Permission cache with 30s TTL and proactive invalidation
  • Async fan-out via Kafka for downstream systems
  • Postgres-backed durability with Redis hot path

Integrations

Connect to every IdP your customers ask for

50+ identity providers and directories supported out of the box. Add your own SAML or OIDC source in minutes.

Browse all integrations

Social

  • Google
  • Microsoft
  • Apple
  • GitHub
  • GitLab
  • Facebook
  • LinkedIn
  • X

Enterprise SSO

  • Okta SAML
  • Azure AD
  • Auth0
  • OneLogin
  • PingIdentity
  • JumpCloud
  • Generic SAML
  • Generic OIDC

Directory

  • SCIM 2.0
  • LDAP
  • Active Directory
  • Workday
  • BambooHR
  • Rippling
  • Google Workspace
  • Okta

Start building today.
Free for developers.

5,000 monthly active users on the house. Production-grade auth, no credit card, no time limit.

Create your account Talk to sales