Descope
Build custom authentication flows with visual workflows, SDKs, and APIs. Reduce user friction, prevent account takeover, and get 360° customer identity views.
Descope is a comprehensive Customer Identity and Access Management (CIAM) platform that transforms how businesses handle authentication and user management. With its innovative drag-and-drop interface, you can create and customize complete user journeys without writing code.
Key Features:
- Visual Workflow Builder: Design authentication flows using drag-and-drop components for signup, login, MFA, SSO, and step-up authentication
- Flexible Implementation: Choose from no-code flows, SDKs, or REST APIs based on your development preferences
- Advanced Security: Prevent account takeover with passwordless authentication, adaptive MFA, and risk-based security controls
- Multiple Auth Methods: Support for passkeys, magic links, social login, One Tap, biometrics, and traditional passwords
Perfect for:
- B2C Applications: Improve onboarding with passwordless auth and A/B testing
- B2B Solutions: Enterprise-ready with self-service SSO, SCIM setup, and multi-tenancy
- Security-First Apps: Built-in fraud prevention and bot protection
The platform integrates with 50+ third-party tools and supports popular frameworks. You can customize user-facing screens with granular styling controls while maintaining your brand identity. Fast deployment means setup in days rather than months, with the flexibility to modify flows without touching your codebase.
The platform offers UI components and styles allowing customization of login screens and branding, or developers can build custom login flows using SDKs and APIs
Risk detection connectors like AbuseIPDB return a reputation score for an IP address, enabling flows to block or challenge suspicious addresses
A connector with Have I Been Pwned checks passwords against a database of compromised credentials and can block password reuse during sign‑up or reset
Project dashboards provide metrics on active users, authentication methods and tenant activity
You can import users via the console or API using JSON files with attributes and custom fields
Descope's B2B features manage tenants representing customer organizations with multi‑tenant SSO, user invitations and roles
Roles and permissions can be defined per tenant and assigned to users or access keys to control access to resources
Flows can link multiple login IDs to a single user profile, merging attributes and preserving existing identities across authentication methods
Users with the Impersonate permission can sign in as other users using flows designed for user impersonation, subject to consent and audit logging
An intuitive control console lets administrators configure projects, flows, tenants, connectors and user settings without code
Users can be exported via the console to a CSV file or programmatically via the search API
Hashed passwords are only available upon request to support
Audit logs and events can be streamed to external destinations such as Amazon S3 and Datadog using built‑in connectors
Descope allows you to create many projects to fit your needs. You could have multiple projects for different businesses, or you could have a development, staging, and production projects for the various stages of your development and testing.
The free forever plan includes a 99% SLA and every other plan has a SLA of 99.99%
Enterprise customers can add a premium support package with a dedicated customer success engineer and tailored support
Descope provides audit logs, dashboards and risk signals to monitor user activity and security events in real time
ISO 27001
SOC2
