Authentication for multi-tenant apps

Easily build multi-tenant auth flows for your SaaS applications using our comprehensive set of hosted pages and APIs.

Auth for multi-tenant apps

Easily build multi-tenant auth flows for your SaaS applications using our comprehensive set of hosted pages and APIs.

Trusted By

How It Works

Build Multi-Tenant Auth In a Snap!

01

Redirect to Wristband hosted login pages
desktop auth step 01mobile auth step 01
step a icon

Use Wristband’s SDKS to implement a login endpoint which redirects to Wristband’s hosted login pages.

step b icon

If the tenant is known upfront, the login endpoint can redirect to the tenant’s login page using the tenant’s vanity domain.

step c icon

If the tenant is not known, the login endpoint redirects to the tenant discovery page so users can find their tenant.

02

Handle Wristband callback requests
desktop auth step 02mobile auth step 02
step a icon

After the user authenticates, Wristband redirects to your application callback endpoint with an authorization code.

step b icon

Use Wristband’s SDKs to exchange the authorization code for tokens, then use the access token to retrieve the user’s claims.

step c icon

Create a session for the authenticated user and redirect back to your application’s home page or deep link.

03

Verify authenticated state (frontend)
desktop auth step 03mobile auth step 03
step a icon

Load the auth context by retrieving the user’s session data.  In this example the session data is pulled from a session cookie.

step b icon

Use the auth context to verify that only authenticated users can access your application’s protected routes.

step c icon

To protect your application's APIs, set up logic to verify the session cookie before processing the request.

04

Verify authenticated state (backend)
desktop auth step 04mobile auth step 04
step a icon

Use the access token associated with the user’s session in order to make authenticated calls to your backend APIs.

step b icon

Verify the validity of the access token using the public signing keys Wristband generated for your application.

step c icon

If the access token associated to the session has expired, use the session’s refresh token to get a new access token from Wristband.

05

Use Wristband’s APIs to manage users from your app
desktop auth step 05
step a icon

Use Wristband’s APIs to update a user’s profile attributes and also change their password.

step b icon

Allow users to change their emails securely by using Wristband’s change email flow.

step c icon

Wristband’s APIs can also be used to let users enroll in MFA.

mobile auth step 05
step a icon

Use Wristband’s APIs to update a user’s profile attributes and also change their password.

step b icon

Allow users to change their emails securely by using Wristband’s change email flow.

step c icon

Wristband’s APIs can also be used to let users enroll in MFA.

06

Use Wristband’s APIs to manage tenants from your app
desktop auth step 06
step a icon

Use Wristband’s APIs to query existing tenant users and also invite new users.

step b icon

Allow tenant admins to configure their identity providers so their users can log in with SSO.

step c icon

Wristband’s APIs can also be used to configure security policies such as MFA for individual tenants.

mobile auth step 06
step a icon

User Wristband’s APIs to query existing tenant users and also invite new users.

step b icon

Allow tenant admins to configure their identity providers so their users can log in with SSO.

step c icon

Wristband’s APIs can also be used to configure security policies such as MFA for individual tenants.

See Wristband In Action

Check out our live demo site

How To Integrate

Use Our Developer Friendly SDKs

Interested In A Complete Example?

View our demo apps on GitHub

What Makes Us Different

Key Benefits of Using Wristband

Flexible Tenant Customization

Create Custom Auth Experiences For Each Tenant

Not all tenants have the same authentication requirements.  Using Wristband’s Dashboard or APIs, you can customize the authentication flows for each tenant. Key features include:

  • Fully brandable auth pages and emails
  • Customizable login methods such as MFA and SSO
  • Configurable security policies
  • Tenant-level custom domain support
Learn about tenant customizations ->
tenant login screenstenant login screens
tenant groupstenant groups

Strict Tenant Isolation

Protect User Data and Prevent Cross-Tenant conflicts

Wristband’s model enforces strict tenant isolation.  Users must belong to a single tenant, and tenant users are logically isolated from each other.  This model provides the following benefits:

  • Tenants have full ownership of their users
  • User data, such as emails, won’t conflict across tenants
  • Reduces the risk of user data leaking across tenants
  • Users can be logged in to multiple tenants simultaneously
Learn about Wristband’s multi-tenancy model ->

Complete User Management

Easily Manage Your Tenant Users

There’s more to identity management than just authentication.  Wristband provides a full suite of turn-key solutions for common user workflows.  Out-of-the-box Wristband supports flows such as:

  • User invitation: Invite users to join tenants
  • Self-signup: Enable users to create new tenants or join existing ones
  • Change email: Allow users to securely change their email
  • Email verification: Ensure users have valid emails
Learn about Wristband’s supported workflows ->
user management screensuser management screens
User A Role: Payer Invite user User B Role: Admin Invite user Read invoice Read invoice
User A Role: Payer Invite user User B Role: Admin Invite user Read invoice Read invoice

Robust RBAC Support

Control access to application Resources

Wristband’s built-in support for Role Based Access Control (RBAC) makes implementing authorization checks within your application simple.  Using Wristband’s RBAC features, you can:

  • Create custom roles and permissions for your app
  • Use predefined permissions to control access to Wristband APIs
  • Assign roles to both humans and machines
  • Quickly access assigned roles through token claims
Learn about Wristband’s support for authorization ->

Is Wristband Right For You?

Who Benefits The Most From Using Wristband

benefits b2b saas icon

B2B SaaS

keyboard_arrow_down

Wristband can be used to implement many styles of authentication; however, it’s primarily designed for B2B SaaS applications whose users authenticate as employees of an organization rather than as individual consumers. For these types of applications, Wristband’s support for features such as multi-tenancy, single sign-on (SSO), and role-based access control (RBAC) provide the most value. Examples of such applications include:

  • Project management and productivity tools
  • HR systems
  • Finance and legal applications
  • Cybersecurity tools
  • E-Commerce and marketplace platforms
  • Sales and Marketing tech
benefits startup smbs icon

Startups & SMBs

keyboard_arrow_down

Wristband is committed to providing companies of all sizes with the tools they need to secure their application’s identities.  We believe that security is an essential right rather than a luxury item. As such, all of Wristband’s security features are available on the free tier.  Even if you’re just starting to build your application, you’ll still have access to advanced capabilities such as MFA and SSO. With Wristband, your application can have enterprise level authentication from day one.

Got Questions?

Talk directly with our developers

Talk over Slack
slack logo

Hear what our amazing customers say about us

kai russo headshot

“Switching over from a competing auth provider to Wristband was a breeze! We were up and running in an afternoon with all the bells and whistles. And their support is outstanding whenever we have any questions. By trusting the folks at Wristband with the security of our app, we’re able to spend more time building the product we love and advancing our mission!”

Kai Russo
Founding Engineer at CuroWork
moham headshot
Chris headshot

“Wristband has been our ideal authentication partner to support our customers quickly. Their B2B multi-tenant auth system is secure, easy to integrate, and affordable. The flexibility and robust security have streamlined our operations, and their responsive support is amazing. We highly recommend Wristband for any business needing a dependable, cost-effective authentication solution.”

Chris Lawson
Co-Founder & Eng Lead at GreenSight

“As a company serving enterprise customers, having a reliable and scalable authentication solution is crucial. Wristband's multi-tenant auth was exactly what we needed! What stood out the most was their hands-on support — guiding us every step of the way and ensuring a quick, smooth integration. We highly recommend Wristband to anyone looking for an authentication solution that just works.”

Nithin Mummaneni
Founder & CEO at Infinity Loop

Deploy your multi-tenant auth solution today. No credit card required.

Multi-tenant auth for companies of all sizes

Wristband is an API-first, multi-tenant auth platform designed for SMBs and enterprise companies.

Secure by design, secure by default

True multi-tenancy

We over-engineered the platform with true multi-tenancy which means data isolation and security are baked into the platform. Your customers’ trust is our top priority, not just a policy statement. Get access to: 

• Full tenant/user isolation
• App-level and tenant-level configurations
• Fine-grained RBAC for tenant management
Learn more >>

Developer-driven auth

Built for developers

Wristband adopts the practices of a best-in-class auth solutions by being developer-driven and API-first. We know that developers build auth and so we have prioritized modern SDKs and a robust API. Save hundreds of dev hours with:

• Prebuilt hosted auth pages
• SDKs for modern web frameworks
• Human customer support and dev community
Visit the docs >>