Users per Org
Apps per Org
<50ms
Target Median Latency
The Cosmic Architecture
One account, one or more Galaxies, and inside each Galaxy the customer orgs and apps you actually manage.
The Galaxy
A shared workspace inside your ZanAuth account. After signing in, you can create your first Galaxy or join an existing one by invite. Solo developers may only need one Galaxy. Agencies, resellers, and partner teams can use a Galaxy to manage many customer orgs from one place.
Solar Systems
An Org, company, or customer tenant inside a Galaxy. Each Solar System is a fully isolated authentication namespace with its own users, apps, SSO config, and branding. It's also the billable unit: one Org = one flat monthly fee. A multi-tenant SaaS team might create one Solar System per customer.
Planets Unlimited
Individual applications inside an Org (Solar System). Your web app, mobile app, internal dashboard, and customer portal — all separate Planets under the same customer org. Spin up as many as you need.
Users Unlimited MAU
Your users. The human accounts authenticating into your apps. In the space map, we sometimes call them Beings as a playful shorthand — but the important part is simple: they're your users, not a pricing lever. Scale to a million without ever seeing a price hike.
Infrastructure Stack
| Target Latency | <50ms p95 |
| Target Uptime | >99 .99% |
| Tenant Isolation | Per Solar System |
| Privacy | GDPR‑Aligned |
| Encryption | All Private Data |
| Security | SOC 2 Planned |
Why so cheap?
Most auth platforms are priced on top of cloud overhead. By running on dedicated hardware, ZanAuth can keep latency low, capacity predictable, and pricing straightforward.
For Agencies & Multitenant SaaS
Keep many customer orgs inside one Galaxy and bill each one as a flat-fee isolated namespace.
Status Quo (MAU Pricing)
ZanAuth (Transparent Pricing)
The Agency Math — Planned & Honest
1 Customer Org (Solar System)
$9
/month
10 Customer Orgs
$90
/month
50 Customer Orgs
$450
/month
100 Customer Orgs
$900
/month · predictable, forever
That's 100 fully isolated customer orgs inside one working model, each supporting unlimited users, unlimited apps, and every security feature — for less than a single seat at some competitors.
Core auth, no tier games
Alpha users get access to everything that's ready today. More features ship as they become production-ready — not as paid add-ons.
Single Sign-On (SSO)
SAML 2.0, Ecosystem SSO out of the box. Connect any IdP — Google Workspace, Azure AD, Okta, or a custom provider. Enterprise-grade SSO at startup pricing.
Coming soon:
Multi-Factor Authentication
TOTP, WebAuthn / Passkeys, and hardware key support. Enforce MFA at the Planet level or globally across a Solar System. Risk-adaptive step-up auth included.
Social Login
Pre-built connectors for Google, GitHub, Microsoft, Apple, Discord, Twitter/X, LinkedIn and more. One toggle to enable. Zero SDKs required from your side.
Coming soon:
RBAC & Fine-Grained Permissions
Define roles, scopes, and permissions per Planet. Attach claims to JWTs. Build multi-tenant permission models without writing a single line of authorization middleware.
Coming soon:
Custom Domains & Branding
Host your login UI on
yourcompany.zanauth.com
or
auth.yourdomain.com
Full white-label support: custom logos, colour
palettes, and email templates per Solar System. Your
brand. Our infra.
Coming soon:
Passwordless & Magic Links
Email magic links, and passkey-first flows that eliminate passwords entirely. Higher conversion on sign-up, zero password reset tickets in your support queue.
Machine-to-Machine (M2M)
Client Credentials flow for services, microservices, and CI/CD pipelines. Issue short-lived tokens, rotate secrets via API, and audit every non-human auth event automatically.
Webhooks & Auth Events
Real-time event streams for every auth action: login, logout, token refresh, MFA challenge, and role change. POST to your endpoint or pipe to Kafka, Datadog, or any SIEM.
Coming soon:
SDKs & Framework Integrations
Official SDKs for Node.js, Python, Go, Rust, PHP, and React.
Coming soon:
How we compare
The goal here is transparency — not a surprise later.
| Feature / Policy | Auth0 | Clerk | ZanAuth |
|---|---|---|---|
| Primary Billing Model | MAU + Per Org + Features | MRU + Per Org + Features | Flat Fee |
| B2B Organizations (Tenants) | 10 then contract | 100 then $1 / mo | Unlimited included |
| Enterprise SSO Connections | Sales call (after 1) | $75 / mo (after 1) | Unlimited included |
| Cost at 1,000 MAU | $70+ / mo | $25+ / mo | $9 / mo |
| Cost at 20,000 MAU | $1,400+ / mo | $25+ / mo | $9 / mo |
| Cost at 60,000 MAU | ~$4,000+ / mo | $200+ / mo | $9 / mo |
| Cost at 120,000 MAU | ~$8,000+ / mo | $1,400+ / mo | $9 / mo |
| Cost at 1,200,000 MAU | Enterprise contract | Enterprise contract | $9 / mo |
Comparison based on publicly available data as of 2026.
Integrate in Minutes
Create an account, create or join a Galaxy, then set up the customer orgs and apps you need.
Step 1
Create Your Account
Sign up once for ZanAuth. Your account is your login across every Galaxy you're part of.
Step 2
Create or Join a Galaxy
Start your own Galaxy or join one you've been invited to as a partner, staff member, or teammate.
Step 3
Create Your First Org
Add an Org (Solar System) for your product or customer.
Step 4
Add Apps & Integrate
Register your apps (Planets). Each app gets its own client ID, redirect URIs, and token config.
Quick Start — PHP SDK
PHP SDK example coming during Alpha
FAQ
How does Alpha access work?
Anyone can create a ZanAuth account. From there you can create your first Galaxy or join one you've been invited to. Contact us via Discord to get your Solar System enabled.
Is there really no MAU limit? What's the catch?
That's possible because the infrastructure cost profile is very different from cloud-hosted auth vendors. We are self-funded, no pressure to pay back loans or make quick return for investors.
What counts as a "Solar System"?
One Solar System = one Org, company, or customer tenant inside a Galaxy. It has its own users, apps, SSO config, and branding. It's also the billable unit: one Org = one flat monthly fee.
Can I white-label ZanAuth for my clients?
Yes. Each Solar System supports custom domains (e.g.
auth.client.com
), custom logos, colors, and email templates. This
makes it easy to white-label each customer org
inside your Galaxy.
Is this GDPR-compliant?
Yes. ZanAuth is built from the ground up for GDPR compliance regardless of the region. We believe privacy is a core pillar to the internet.
How is this different from self-hosting Keycloak or Authentic?
Self-hosting means you own the ops burden — upgrades, backups, incident response, TLS cert rotation, HA config. ZanAuth gives you the economics of self-hosting (flat cost, no MAU gates) with the reliability of a managed service (Uptime Target 99.99%, automatic upgrades, 24/7 infra monitoring). Your team ships features, not auth infra.
Can I migrate from Auth0 / Clerk / etc?
Yes. Migration tools are being built and will be self-service at no cost.
Create your account, then create or join a Galaxy.
Anyone can sign up · No credit card · Alpha Org access is enabled selectively via Discord