Skip to content

SaaS software

Make ProAuth your platform’s identity stack — multi‑tenant by design with automated onboarding and runtime configuration. Meet each customer’s needs without new releases or lock‑in.

Industry Context

Archetype: Enterprise SaaS platforms

B2B SaaS serving large enterprises with thousands of employees; stringent uptime, customization, and directory integration requirements.

Challenges

Delivering true multi‑tenant identity with runtime isolation and per‑tenant customization is complex and risky to build in‑house.

  • Create and configure tenants at runtime (no redeploys)
  • Per‑tenant choice of user store vs. federation; SCIM sync to customer directories
  • Per‑tenant MFA modules and branded login flows
  • Zero‑downtime deployments essential for 24/7 SaaS
  • Predictable, flat‑rate licensing to support growth

Solution Approach

ProAuth provides multi‑tenancy by design with registration flows, APIs, and configuration‑as‑code to onboard and customize tenants safely at runtime.

Runtime tenant creation and isolation for config, policies, branding

Dedicated user stores on demand or federation to customer IdPs; SCIM for synchronization

MFA per tenant/app (Passkeys, TOTP, SMS, Email)

Kubernetes‑ready with zero‑downtime upgrades and autoscaling

Flat‑rate licensing with no per‑user caps

Architecture & Operations

Kubernetes deployment with SQL Server or Azure SQL; horizontally scalable with autoscaling policies.

  • ProAuth core (OIDC/OAuth2, tenant runtime, MFA, federation, SCIM)
  • Config‑as‑code (idempotent YAML), CLI and Management API
  • SaaS app integrates via a single OIDC/OAuth surface

Zero‑downtime upgrades; scale replicas for throughput and HA.

Implementation

Timeline: 1–3 weeks depending on integration depth and branding scope.

  1. P0: Tenant model and isolation design
  2. P1: Automation via registration UI/APIs and YAML
  3. P2: Federation/SCIM and MFA per tenant
  4. P3: Branded login journeys and attribute capture

Results & Benefits

  • Shorter onboarding and fewer custom code paths
  • Consistent auth across customers; faster, safer releases
  • Predictable costs while scaling user base
1–3 weeks
Typical integration timeline
Zero‑downtime
Deployments

Future Expansion

  • Tenant self‑service UX enhancements
  • Passwordless adoption across tenants

Why ProAuth

  • Isolate config, branding, and policies per tenant; change at runtime
  • Choose per‑tenant user stores or federate to customer IdPs; keep directories in sync with SCIM
  • Branded login per tenant and app; customize user journeys
  • Capture required attributes and MFA enrollment on first login

How it fits

  • Onboard tenants via registration UI and APIs; automate with CLI and idempotent YAML
  • Create dedicated user stores on demand, or connect to external IdPs via federation
  • Enable MFA modules (Passkeys, TOTP, SMS, Email) per tenant/app as needed

Outcomes

  • Shorter onboarding time and fewer custom code paths
  • Consistent auth across customers; faster, safer releases
Related Documentation: Introduction · User store · Federation · SCIM · CLI
Get started Talk to an expert
Explore features · See pricing