Agent-Native Auth Infrastructure

Auth Infrastructure
Your Agent Can
Actually Use.

Your coding agent adds user pools, secrets vault, and JWT tokens in 60 seconds. Pure API — no dashboard clicks, no proprietary SDK, no per-MAU surprises. You review and deploy.

Get API Key Quickstart

CLAUDE.md

# Your agent adds auth to any project
curl -X POST https://authshore.ai/api/v1/auth/signup \
  -H "X-API-Key: as_pub_abc123" \
  -H "Content-Type: application/json" \
  -d '{
    "email": "user@example.com",
    "password": "SecurePass123!",
    "userPoolId": "pool_main"
  }'

# Response
{
  "accessToken": "eyJhbG...",
  "refreshToken": "eyJhbG...",
  "user": { "id": "usr_7f3a..." }
}

Why Agents Choose AuthShore

Auth0 needs a dashboard. Cognito needs CloudFormation. Your agent needs a curl command.

🤖

Agent-Native API

Pure REST + JSON. No dashboard required. Your agent calls POST /auth/signup and gets tokens back. Works with Claude Code, Cursor, Cline, Windsurf, Aider, Codex.

Auth0 requires clicking through a dashboard to create tenants. Cognito needs CloudFormation templates. AuthShore: one curl command, done.

🔑

Per-Project JWT Secrets

Every project your agent creates gets its own isolated signing key. A breach in one can't compromise another. Your agent manages keys via API — no console needed.

Supabase shares JWT secrets across projects — a known vulnerability. AuthShore isolates per-project, automatically.

🔓

Full Data Portability

Export every user — including password hashes — via API. Your agent can migrate users between platforms programmatically. No vendor lock-in, ever.

Cognito can't export password hashes — migrating away forces every user to reset their password. AuthShore: your agent exports everything in one call.

🏢

Multi-Tenant by Design

Your agent creates isolated user pools per customer with one API call. No row-level-security hacks, no Lambda triggers, no config files.

Cognito: Lambda triggers for isolation (cost + latency). Supabase: RLS policies (complex). AuthShore: POST /pools — done.

🔒

Secrets Vault (Included)

Your agent stores API keys, database URLs, and tokens via POST /secrets. Versioned, encrypted, with rollback. No separate service, no extra cost.

AWS Secrets Manager: $0.40/secret/month. Doppler: $6/user/month. AuthShore: included in every plan. Your agent manages secrets alongside auth.

💰

Per-Project Pricing

Flat rate per project, not per monthly active user. Your agent scales to 10K users without a bill surprise. Predictable costs your agent can reason about.

Auth0: 15× bill increase on 1.67× user growth. Cognito: hidden SNS + Lambda + CloudTrail charges. AuthShore: $29/mo for 1K users, always.

Your Agent Ships Auth in 60 Seconds

Three API calls. No dashboard. No config files. No CloudFormation.

Agent Gets API Key

Add AuthShore to your agent's rules file (CLAUDE.md, .cursorrules, etc). Your agent gets an API key and starts calling endpoints immediately.

X-API-Key: as_pub_*

Agent Creates Pools

Your agent calls POST /pools to create isolated user containers with password policies, MFA, and custom rules. One call per pool.

POST /sdk/cognito/pools

Agent Authenticates Users

Your agent wires up signup and signin endpoints. Users get JWT access + refresh tokens. Your agent handles the auth flow — you review the code.

POST /auth/signup

Agent-Ready vs Legacy Auth

Your agent needs an API, not a dashboard. Here's who delivers.

Feature	AuthShore	Supabase	Cognito	Auth0	Clerk
Agent-Native API	✓	Partial	✕	✕	✕
Password Hash Export	✓	✕	✕	✕	✕
Per-Project JWT Secrets	✓	✕	✕	✓	✕
Multi-Tenant Native	✓	✕	Lambda	✓	Partial
Predictable Pricing	✓	✕	✕	✕	✕
No Hidden Infra Costs	✓	✓	✕	✓	✓
User Migration SDK	✓	✕	Partial	✓	✕
Audit Logs Included	✓	Partial	CloudTrail $	✓	✓
Credentials Vault Included	✓	✕	$0.40/secret	✕	✕
MFA Included in Price	✓	✓	SNS $	Add-on	✓

The API Your Agent Already Knows

Standard REST + JSON + curl. Your agent reads the docs at /llms.txt and starts building.

# Sign up a new user
curl -X POST https://authshore.ai/api/v1/auth/signup \
  -H "X-API-Key: as_pub_abc123" \
  -H "Content-Type: application/json" \
  -d '{
    "email": "alice@example.com",
    "password": "StrongP@ss1!",
    "userPoolId": "pool_main",
    "metadata": { "plan": "pro" }
  }'

# 201 Created
{
  "accessToken":  "eyJhbGciOiJIUzI1NiIs...",
  "refreshToken": "eyJhbGciOiJIUzI1NiIs...",
  "expiresIn":    3600,
  "user": {
    "id":    "usr_7f3a9b2c",
    "email": "alice@example.com"
  }
}

# Store a secret credential
curl -X POST https://authshore.ai/api/v1/sdk/secrets \
  -H "X-API-Key: as_secret_xyz789" \
  -H "Content-Type: application/json" \
  -d '{
    "key": "DATABASE_URL",
    "value": "postgres://user:pass@host:5432/db",
    "environment": "production",
    "folder": "/backend"
  }'

# Retrieve it (decrypted)
curl https://authshore.ai/api/v1/sdk/secrets/{id} \
  -H "X-API-Key: as_secret_xyz789"

# 200 OK
{
  "key":   "DATABASE_URL",
  "value": "postgres://user:pass@host:5432/db",
  "version": 1,
  "environment": "production"
}

# Import users with pre-hashed passwords
curl -X POST https://authshore.ai/api/v1/users/import \
  -H "X-API-Key: as_secret_xyz789" \
  -H "Content-Type: application/json" \
  -d '{
    "users": [
      {
        "email": "migrated@example.com",
        "passwordHash": "$2b$12$LJ3m4...",
        "hashAlgorithm": "bcrypt",
        "userPoolId": "pool_main"
      }
    ]
  }'

# 200 OK
{
  "imported": 1,
  "skipped":  0,
  "errors":   []
}

Per-Project, Not Per-User

Your agent scales to thousands of users without bill surprises. Auth + Secrets Vault included in every plan.

Free

Get started, no card required

1 User Pool
100 Users
25 Credentials
1 Environment
100 API Reads/day
7-day Audit Logs
Community Support

Get API Key ($1 verify)

Starter

$29/mo

For growing products

5 User Pools
1,000 Users
200 Credentials
3 Environments
Manual Rotation
5,000 API Reads/day
30-day Audit Logs
Email Support

Start Free Trial

Professional

$99/mo

For production workloads

Unlimited User Pools
10,000 Users
2,000 Credentials
Unlimited Environments
Auto Rotation
50,000 API Reads/day
90-day Audit Logs
Priority Support