Drop a fully functional OAuth 2.0 / OIDC server right onto Cloudflare's edge in minutes. Forget about managing servers and paying per-user SaaS fees.
# Clone and deploy
git clone https://github.com/IdpFlare/idpflare
cd idpflare
# Create required resources first
# wrangler d1 create idpflare-db
# wrangler kv namespace create SESSIONS
# wrangler kv namespace create RATE_LIMIT
npm run deploy
# Your IdP is live at:
# https://auth.yourdomain.com
# Complete with:
✓ OAuth 2.0 / OpenID Connect
✓ SAML 2.0 Support
✓ Social Login (Google, GitHub, etc)
✓ Multi-Factor Authentication
✓ Admin Dashboard
✓ Management APIsDeploy a complete, self-hosted Identity Provider directly to your Cloudflare account. It scales instantly, costs pennies to run, and keeps you out of SaaS lock-in.
Take a closer look at the interface
A capable identity provider that doesn't hold back features.
Strictly standard compliant. Full OAuth 2.0 and OpenID Connect support, including PKCE and refresh tokens right out of the box.
Tweak the colors, swap the logos, and adjust the typography. The UI is completely configuration-driven so it feels like your brand.
Drop in Google, GitHub, Facebook, or Microsoft logins with just a few lines of config.
Keep things secure with TOTP apps, Email OTPs, or backup codes. You decide how strict to be with your users.
Works seamlessly with Resend, SendGrid, Mailgun, Postmark, or AWS SES—complete with clean, customizable email templates.
Manage users, revoke sessions, and generate API keys from a fast, clutter-free dashboard.
Clean REST APIs for managing your instance, with interactive OpenAPI docs built right in.
Need to plug into legacy enterprise setups? We've got full SAML 2.0 support ready to go on day one.
Runs on Cloudflare Workers. Enjoy zero cold starts and sub-50ms latency no matter where your users are globally.
Tap into webhooks to run custom logic during registration, login, or token generation.
A detailed, searchable audit log of every sign in, registration, and security event so you're never flying blind.
Host it on Cloudflare's free tier and only pay for bulk database usage once you get huge.
No messy installations. Just basic Cloudflare commands.
Fork the repository to your GitHub account and tweak wrangler.toml to match your branding.
Run a single command to provision your Cloudflare D1 database and KV storage namespaces.
Run npm run deploy to push your shiny new IdP to Cloudflare. It handles everything automatically.
Point your apps to your IdP using standard OAuth/OIDC libraries.
See why self-hosting makes more sense
| Feature | IDPFlare | Auth0 | Keycloak | Self-Built |
|---|---|---|---|---|
| Setup Time | 10 minutes | 10 minutes | 2+ hours | Days or weeks |
| Infrastructure | Self-Managed* | Managed | Self-managed | Self-managed |
| Global Edge | ✓ Included | ✓ Premium | ✗ | ✗ |
| Cost (10k users) | $40 (once) + $0-5/mo* | $228/mo | $50+/mo (VM) | ~$50+/mo |
| Custom Domain | ✓ Free | ✓ Paid | ✓ Free | ✓ Free |
| White Label | ✓ Full | ✓ Paid | ✓ Limited | ✓ Full |
| Source Code Access | ✓ Full | ✗ | ✓ Apache | ✓ You own it |
* See pricing section below
No recurring subscriptions or per-user fees. Just outright ownership of the installation.
Everything you need to run your own identity provider
What you pay Cloudflare directly
We handle everything for you
💡 How it works: Purchase gives you access to the private repository. You deploy to your own Cloudflare account and pay them directly for usage (most users stay on the free tier).
Grab the full source code today for a one-time payment of $40.