Stytch
Stytch is an authentication and identity infrastructure provider. Its Consumer and B2B APIs cover passwordless authentication (Magic Links, OTP, OAuth, WebAuthn / Passkeys, TOTP), enterprise SSO (SAML / OIDC) and SCIM, sessions, M2M client-credentials tokens, and Device Fingerprinting / fraud defense. Connected Apps lets a Stytch-secured product act as an OAuth 2.0 / OIDC Authorization Server for third-party integrations, desktop apps, AI agents, and MCP servers — a posture Stytch describes as "agent-ready". A separate Management API plus a Terraform provider handle workspace configuration as code.
APIs
Stytch Consumer Authentication API
Stytch's Consumer API for end-user authentication. Covers Magic Links, SMS / email / WhatsApp OTP, OAuth social login, Passwords, TOTP, WebAuthn / Passkeys, Crypto Wallets, Sess...
Stytch B2B Authentication API
Stytch's B2B API for multi-tenant SaaS authentication. Covers Organizations, Members, SSO (SAML and OIDC), Magic Links, OTP, OAuth, Discovery, Sessions, B2B RBAC, SCIM directory...
Stytch Management API
Stytch's Workspace Management API (management.stytch.com) for programmatic configuration — projects, environments, secrets, redirect URLs, allowed country codes, RBAC policies, ...
Collections
Stytch B2B Authentication API
POSTMANStytch Management API
POSTMANArazzo Workflows
Stytch B2B Create Organization and Invite Member
Create a B2B organization and email a magic link invite to a new member.
ARAZZOStytch B2B Discovery Intermediate Session Exchange
Authenticate a discovery magic link, list discovered organizations, then exchange into one.
ARAZZOStytch B2B Email Magic Link Discovery and Organization Create
Send a discovery magic link, authenticate it, and create an organization from the intermediate session.
ARAZZOStytch B2B Email OTP Discovery and Exchange
Send a discovery email OTP, authenticate the code, then exchange into an organization.
ARAZZOStytch B2B Email OTP Login
Send an email OTP to an organization member and authenticate the code.
ARAZZOStytch B2B Organization Magic Link Login
Send an organization-scoped email magic link and authenticate the clicked token.
ARAZZOStytch B2B Create Organization and Member
Create a B2B organization, add a member to it, and read the member back.
ARAZZOStytch B2B Password Authenticate and Session
Authenticate a member's organization password, then validate the resulting session.
ARAZZOStytch B2B Recovery Codes Get and Rotate
Read a member's MFA recovery codes, then rotate them to a fresh set.
ARAZZOStytch B2B SMS OTP Multi-Factor Authentication
Send an SMS OTP to a member and authenticate the code to complete MFA.
ARAZZOStytch B2B TOTP Authenticator Enrollment
Register a TOTP authenticator for a member and authenticate the first code.
ARAZZOStytch Create User and Send Email Magic Link
Create a Stytch user, send them an email magic link, and authenticate the resulting token.
ARAZZOStytch Crypto Wallet Authentication
Start a crypto wallet challenge and authenticate the signed message.
ARAZZOStytch Email One-Time Passcode Login
Send an email one-time passcode, authenticate the code, and read the session.
ARAZZOStytch Magic Link Login or Create
Send a login-or-create email magic link and authenticate the clicked token.
ARAZZOStytch OAuth Authenticate and Session
Authenticate an OAuth token returned from a provider redirect and read the session.
ARAZZOStytch Password Reset by Email
Start an email password reset, complete it with the token, and read the new session.
ARAZZOStytch Password Signup to Session
Create a password-based user, authenticate the credentials, and read the resulting session.
ARAZZOStytch Revoke a User's Connected App
List a user's connected apps and revoke the first authorized app's access.
ARAZZOStytch Session Authenticate and Revoke
Validate a session token, read the user's active sessions, then revoke the session.
ARAZZOStytch SMS One-Time Passcode Login
Send an SMS one-time passcode and authenticate the code the user enters.
ARAZZOStytch TOTP Authenticator Enrollment
Create a user, register a TOTP authenticator, and authenticate the first code.
ARAZZOStytch User Create, Search, and Delete
Create a user, find them again by email search, then delete the matched user.
ARAZZOStytch WhatsApp One-Time Passcode Login
Send a WhatsApp one-time passcode and authenticate the code the user enters.
ARAZZOGraphQL
Stytch GraphQL Schema
Stytch is a REST-only authentication and identity platform. No public GraphQL API is offered. This directory contains a **conceptual GraphQL schema** (`stytch-schema.graphql`) d...
GRAPHQL