Simple OTP Authentication. Enterprise Power.
Courier ID is a dedicated identity provider deployed exclusively for your organization. We handle the infrastructure, updates, and maintenance while you get passwordless email authentication with complete control, multi-tenant isolation, and OAuth2/OIDC compliance.
The Best of Both Worlds
For Your Users: Email → Code → Authenticated. No passwords to remember, no complex flows.
For Your Organization: Complete flexibility with multi-realm architecture, per-tenant configuration, and enterprise-grade security—deployed and managed as your private SaaS instance.
Why Courier ID?
🎯Passwordless Made Simple
Users authenticate with just their email and a verification code. No passwords to remember, reset, or compromise.
- Instant authentication - Users receive a code via email and they're in
- Zero friction - No complex password requirements or forgotten password flows
- Secure by default - Cryptographically secure OTP with automatic rate limiting
- Multi-language - English and French support with smart detection
🏢True Multi-Tenant Architecture
Serve multiple customers with complete isolation between tenants. Each realm is its own secure environment.
Per-Realm Configuration:
- Independent SMTP settings for branded emails
- Separate JWT signing keys (ES256)
- Custom rate limits and security policies
- Domain whitelisting/blacklisting
- Unique OAuth2 clients and user bases
Complete Flexibility:
- Create unlimited realms for different customers or environments
- Enable/disable realms instantly
- Assign realm-specific administrators
- Full branding control per tenant
🔒Enterprise-Grade Security
Built with security-first principles and compliance in mind.
- OAuth2/OIDC compliant - Full RFC 6749, 7636, OpenID Connect 1.0
- PKCE mandatory - Enhanced security for all authorization flows
- ES256 JWT signing - Elliptic curve cryptography with key rotation
- Comprehensive audit logs - Every authentication event tracked
- Code reuse detection - Automatic token revocation on security violations
- Rate limiting - Configurable per realm to prevent attacks
⚡Ready in Minutes
From setup to production-ready authentication quickly and efficiently.
- Simple configuration - Intuitive admin interface for all settings
- Quick onboarding - Get your instance configured and ready fast
- Seamless setup - No complex technical configuration required
- High availability - Built for reliability and performance
🎨Dedicated SaaS Deployment
Your own private instance, fully managed. No shared infrastructure, no vendor lock-in, no per-user fees.
- Dedicated deployment - Exclusive instance deployed for your organization
- Your data - Complete data isolation and control
- Fully managed - We handle infrastructure, updates, and maintenance
- Deployed on our infrastructure - Secure, reliable hosting managed by us
- Predictable pricing - No per-user fees, just flat instance pricing
Perfect For
SaaS Companies
Serve multiple customers with complete tenant isolation, each with their own realm and configuration
Enterprise Organizations
Dedicated instance with audit logging for compliance (SOC 2, HIPAA, GDPR)
Multi-Brand Businesses
Separate realms for each brand with independent branding and security policies
Development Teams
Managed authentication service with full OAuth2/OIDC support and comprehensive APIs
Technical Highlights
Standards Compliant:
OAuth 2.0 (RFC 6749) • PKCE (RFC 7636) • OpenID Connect 1.0 • Token Introspection (RFC 7662) • Token Revocation (RFC 7009)
Production Ready:
Enterprise-grade reliability • Health monitoring • Comprehensive audit logging • Automatic updates
How It Works
1. We Deploy Your Instance
Your dedicated CourierID instance is provisioned on our secure infrastructure, fully managed and maintained by our team.
2. You Configure Your Realms
Use the admin interface to create realms, configure SMTP, set security policies, and manage users—all through an intuitive web dashboard.
3. Your Users Authenticate
Simple passwordless authentication with OTP codes delivered via your branded emails.
4. We Handle Everything Else
Infrastructure management, security updates, monitoring, and scaling—all managed for you.
What's Included
Core Features:
- Complete OAuth2/OIDC provider with PKCE enforcement
- Unlimited realms with complete tenant isolation
- Passwordless email authentication (OTP)
- Admin interface with role-based access control
- Comprehensive audit logging for compliance
- Multi-language support (EN/FR)
Enterprise Support:
- Dedicated infrastructure deployment
- 24/7 monitoring and health checks
- Automatic updates and security patches
- Custom domain and SSL configuration
- Technical support and onboarding
Coming Soon:
MFA (TOTP, WebAuthn) • SAML 2.0 • Custom Themes • Advanced Analytics
Fair Usage Policy
CourierID instances are priced with generous usage allowances designed to accommodate typical authentication needs. Our fair usage policy ensures optimal performance for all customers:
- Unlimited authentication requests within reasonable usage patterns
- Rate limits designed to prevent abuse while supporting legitimate high-volume use cases
- Proactive monitoring and alerts to help you stay within optimal performance ranges
- Flexible options available for exceptional usage requirements - contact us to discuss custom arrangements
Ready to Get Started?
Contact us to discuss your requirements and get your dedicated CourierID instance deployed.
CourierID - Simple for users. Powerful for enterprises. Deployed for you.
Learn more?
Would you like more information? Don't hesitate to contact us!
PO Box 653
Prévost, Quebec
J0R 1T0