Authify Docs

Enterprise Identity Infrastructure

Authify provides the building blocks for phishing-resistant authentication. Built on FIDO2 WebAuthn standards, our API enables device-bound cryptographic security for any application.

Quickstart Guidance

1

Install the SDK

Add Authify to your project using your preferred package manager.

npm install @authify/react
2

Initialize Client

Configure the provider with your application ID.

<AuthifyProvider appId="your_app_id">...</AuthifyProvider>

Modern Architecture

Authify leverages **Passkeys** and **WebAuthn** to eliminate shared secrets. Private keys never leave the secure hardware enclave of the user's device.

Device-Bound

Private keys are locked to the physical hardware.

Phishing-Proof

Origin-bound signatures prevent credential replay.

Biometric Verified

Local-only biometric unlock via Secure Enclave.

The Authentication Flow

1. Start Challenge
Request a cryptographic challenge for the user's device.
POST /api/v1/auth/start { "username": "alice", "app_id": "authify_live_123" }
2. Verify Response
Send the signed cryptographic response back to us.
POST /api/v1/auth/verify { "id": "credential_id_abc", "signature": "base64_sig..." }