AuthenSeeDocs

Integration Guides

Step-by-step guides for integrating AuthenSee into your application.

Integration Guides

AuthenSee integrates through its co-branded hosted flow, which you launch from your own app as a popup. The SDK that powers that flow is also published for AuthenSee's first-party and React Native surfaces.

Choose your integration path

Create a session on your backend and bring the user into the AuthenSee hosted flow — either as a popup drop-in (AuthenSee.open()) that stays on your page, or as a full redirect. Receive a one-time result and exchange it server-side. This is the path for third-party web apps: the passkey ceremony runs on AuthenSee's own origin, where it's allowed to (a cross-origin iframe can't run it). Best for:

  • Web applications
  • Quick prototypes
  • Teams that prefer not to build authentication UI

Get started with the embed (popup drop-in) guide or the hosted pages guide.

Direct SDK (advanced / first-party only)

Import the SDK, initialize it with a session token, and drive enrollment/auth yourself. Because enroll() / authenticate() run the WebAuthn passkey ceremony, this only works when the page is served from AuthenSee's own origin — so it's for AuthenSee's first-party surfaces and React Native apps configured against the AuthenSee RP, not a third-party website on its own domain. Best for:

  • Native mobile apps (React Native)
  • AuthenSee's own hosted pages / apps

Get started with the SDK overview.

Available guides

GuideDescription
Embed (popup drop-in)Drop in @rebellion-systems/authensee-embed and launch the hosted flow in a popup
Hosted pagesRedirect-based integration with zero frontend code
React NativeNative mobile integration with on-device proving

Common integration patterns

On a third-party origin these run through the hosted popup. The AuthenSee.authenticate() calls below are the first-party / hosted-runtime form. From your own domain, trigger the same step-up or recovery with AuthenSee.open() (the popup) and exchange the returned one-time result code server-side.

Step-up authentication

Use AuthenSee for high-security actions (money transfers, account changes) while keeping your existing login flow:

async function transferMoney(amount: number, recipient: string) {
  // Step-up: verify identity before high-value action
  const result = await AuthenSee.authenticate();
 
  if (result.success) {
    // Include the JWT in your API call
    await api.transfer({
      amount,
      recipient,
      authToken: result.token,
    });
  }
}

Account recovery

Replace insecure recovery flows (email links, SMS codes) with ZK-proven identity verification:

async function recoverAccount() {
  // User proves they know their security questions
  // without revealing the answers to your server
  const result = await AuthenSee.authenticate();
 
  if (result.success) {
    // Grant access to account recovery flow
    await api.initiateRecovery({ authToken: result.token });
  }
}

Multi-provider reusability

Users enroll once with AuthenSee and reuse their factors across all integrated providers. No re-enrollment needed when a user signs up for a new service that uses AuthenSee.

Previous

API Reference

Next

Integration Guides

On this page