Extensibility
Make Auth Yours
Why Extensibility Matters
Every product has its unique rules — approvals, allowlists, risk checks. Authgear gives developers the tools to build them cleanly with Hooks and the Admin API, so your team can focus on the product.
Blocking and Non-Blocking Authentication Hooks
Control authentication behavior or trigger workflows with Hooks that run before, during, or after key user events.
Non-blocking hooks
- Get notified when something happens; run workflows in your systems while users continue.
user.created, user.profile.updated, user.authenticated, user.disabled, user.reenabled, etc.
Blocking hooks
- Intercept a flow and decide what happens next
user.pre_created, user.profile.pre_updated, user.pre_schedule_deletion, oidc.jwt.pre_create, etc.
What you can build
- Allowlist & signup windows
Only permit signups from approved IPs/domains or during business hours. - Token enrichment
Add custom claims to ID/Access tokens at issuance. - Profile governance
Validate or transform attributes before they are saved. - Lifecycle automation
Fire webhooks on user signup to open tickets, sync CRM.
Admin API
Everything you can do in the Management Portal is available via Admin API, so ops can scale with code. Provision users, update roles/groups, manage sessions, pull analytics, and export audit logs.
Developer Experience
Build fast with SDKs
JavaScript/TypeScript (web & SPA), iOS (Swift), Android (Kotlin), React Native, Flutter,…
Extend Functions with Hooks
TypeScript or Webhooks
Automate operations with Admin API
Provision users, assign roles, and query logs programmatically
Start building authentication that fits your logic, your stack, your users