Stytch
Stytch · Ranked #5 of 8 in Authentication & Identity APIs
API-first passwordless and B2B auth with no feature gates on the free tier (MFA, SSO, SCIM, RBAC, M2M, device fingerprinting all included) and usage-based pricing.
Passwordless & B2B auth, no feature gates
Overview
Stytch is a developer-first authentication and identity platform offering API- and SDK-driven primitives for both consumer (B2C) and B2B SaaS applications. Founded by ex-Plaid engineers, it positions itself against incumbents like Auth0/Okta with an "API-first, no feature-gating" philosophy: every plan unlocks the full suite (passwordless/magic links, OTP, social login, passkeys/WebAuthn, MFA, SSO/SAML/OIDC, SCIM, RBAC, M2M tokens, and multi-tenant organization management) rather than locking enterprise features behind sales calls. It has also leaned into emerging "AI agent" identity and device fingerprinting/fraud (via its IPQS acquisition), making it broader than a pure login box.
The core appeal is developer experience and transparent usage-based pricing. Reviewers consistently praise the quality of the SDKs, the clarity of docs and migration guides, and unusually responsive 1:1 support, which makes it a popular landing spot for teams fleeing Auth0 price hikes. Pricing is genuinely simple: a large 10,000-MAU free tier, no pricing cliffs, and per-active-user billing (volume-discounted) with SSO/SCIM connections at $125 each beyond the included five. The reliability story is strong on paper, a 99.99% standard SLA (up to 99.999% for enterprise) and a public status page showing 100% trailing-90-day API uptime at the time of writing.
The trade-offs are real but narrow. Stytch is a modern, opinionated product, so integrating it with legacy/on-prem identity providers can be painful, and several reviewers note they lean on support more than they'd like, a sign that some self-serve edges are still rough. Branding removal on certain emails is a paid ($99) add-on that irritates some developers, and email-template customization is more limited than veterans like Auth0. The review base is also still relatively small (tens of reviews on G2), so the glowing aggregate rating reflects an enthusiastic early-adopter cohort more than mass-market scale. Net: an excellent fit for greenfield consumer and B2B SaaS apps that want modern auth and predictable pricing; a weaker fit for enterprises with heavy legacy IdP migration needs.
How this score is derived
The APIbenchmarks Index is a weighted sum of four dimensions, each scored on an absolute 0–100 reference scale. See the methodology for every mapping.
| Dimension | Score | Weight | Contribution |
|---|---|---|---|
| Documentation & DXWidely praised in reviews for clear, transparent API docs plus dedicated comparison and migration guides, with a responsive devrel team that fixes reported doc errors quickly. | 86 | 30% | 25.8 |
| ReliabilityBacks a 99.99% standard uptime SLA (99.999% for enterprise), publishes a real-time status page, and showed 100% trailing-90-day Live/Test API uptime at the time of review. | 78 | 25% | 19.5 |
| Ecosystem & SDKsOfficial frontend SDKs (vanilla JS, React, Next.js) plus backend SDKs for Node, Python, Go, Ruby, and Java cover most modern stacks, though the third-party plugin/marketplace ecosystem is smaller than Auth0's. | 76 | 25% | 19.0 |
| AccessibilitySelf-serve signup with a generous 10,000-MAU free tier and no feature gating lowers the barrier to entry, but legacy IdP integration and limited email customization can require support involvement. | 90 | 20% | 18.0 |
| APIbenchmarks Index (ABI) | 82.3 | ||
Table 1. Derivation of the ABI for Stytch. Contribution = score × weight; the index is their sum.
At a glance
- Vendor
- Stytch
- Pricing model
- Usage-based (MAU + connections)
- Free tier
- 10k MAU + 5 SSO/SCIM connections
- Official SDKs
- 9 languages
Pricing
| Pay as You Go (B2B & Consumer) | $0/mo base | Always-free up to 10,000 MAUs/agents, unlimited organizations, 5 SSO/SCIM connections, 1,000 M2M tokens, 10,000 fingerprints; full auth suite. Overage billed per active user (volume-discounted, ~$0.05-$0.10/MAU). |
| SSO/SCIM connection add-on | $125 per connection | Charged for each SSO or SCIM connection beyond the 5 included in the free tier. |
| Brand customization / remove Stytch branding | $99 (one-time, all projects) | Unlocks removal of Stytch branding and brand customization across projects. |
| Device fingerprinting (fraud) | $0.005 per fingerprint | 10,000 fingerprints included free; usage beyond that billed per fingerprint. |
| Enterprise | Custom (contact sales) | Discounted usage rates, 99.99%+ uptime SLA (up to 99.999%), enterprise support SLA, private Slack channel, migration support, HIPAA/BAA. |
Key features
- •Email magic links and passwordless authentication
- •One-time passcodes (SMS, email, WhatsApp) and TOTP MFA
- •Passkeys / WebAuthn and biometric auth
- •Social login (Google OneTap, OAuth providers)
- •Enterprise SSO (SAML/OIDC) and SCIM provisioning
- •Multi-tenant B2B organizations with JIT provisioning and RBAC
- •Machine-to-machine (M2M) tokens for service auth
- •Device fingerprinting and fraud/bot prevention
- •AI agent identity and authorization (Connected Apps / agent auth)
- •Pre-built UI components plus headless API/SDK control plane
Official SDKs
Strengths & trade-offs
- +Transparent usage-based pricing with a large 10,000-MAU free tier and no hard pricing cliffs
- +No feature gating: SSO, SCIM, RBAC, MFA, passkeys, and M2M available even on the free plan
- +Highly rated developer experience and SDK quality, repeatedly cited by Auth0 migrators
- +Responsive, hands-on 1:1 support and migration assistance
- +Strong reliability posture: 99.99% standard SLA, up to 99.999% for enterprise, public status page
- +Covers both consumer (B2C) and B2B multi-tenant SaaS auth, plus device fingerprinting/fraud and AI-agent identity
- –Integrating with legacy/on-prem identity providers is difficult and sometimes impractical
- –Several reviewers report relying on support more often than they'd like for non-trivial setups
- –Removing Stytch branding on certain emails is a paid ($99) add-on that annoys some developers
- –Email/communication template customization is more limited than older incumbents
- –Relatively small public review base (tens of reviews), skewed toward early adopters
- –SSO/SCIM beyond 5 connections adds $125 each, which can add up for connection-heavy B2B deployments
What developers say
G2 4.8/5 · ~37 reviews
Developers rate Stytch very highly for SDK quality, clear docs, transparent pricing, and responsive support, with the main criticisms being legacy-IdP integration friction and reliance on support.
“Stytch was very easy to setup and implement in our experience - we were able to switch from our existing Auth0 implementation. The control plane is very easy to understand, and the SDKs offer a best in class developer experience.”
Key figures
| Live API uptime (trailing 90 days) | 100.00% | Stytch status page ↗ |
| Device Fingerprinting uptime (trailing 90 days) | 99.990% | Stytch status page ↗ |
| Standard uptime SLA | 99.99% | Stytch pricing / SLA ↗ |
| Enterprise uptime SLA | 99.999% | Stytch (why switch blog) ↗ |
| Free tier MAUs | 10,000 MAUs included | Stytch pricing page ↗ |
| Entry per-MAU price (beyond free tier) | from $0.05 per active user | Stytch self-serve pricing announcement ↗ |
| SSO/SCIM connection price (beyond 5) | $125 per connection | Stytch pricing page ↗ |
Compare Stytch head to head
Sources
- https://stytch.com/pricing
- https://status.stytch.com/
- https://stytch.com/blog/stytch-self-serve-pricing/
- https://stytch.com/blog/why-switch-to-stytch/
- https://stytch.com/docs/sdks
- https://www.g2.com/products/stytch/reviews
- https://fusionauth.io/guides/stytch-alternatives
- https://supertokens.com/blog/stytch-pricing
Figures last verified 2026-06-27. Spotted an error? corrections@apibenchmarks.com