Start for free
PRODUCTS
for you
Agentkit
Auth, scopes & tool-calls for your agents.
AUTH FOR SAAS
User management, RBAC, and SSO for your app.
Auth for MCP
Drop-in OAuth 2.1 for MCP servers.
Agent Gateway
Early access
Connectors with access controls for org-wide agents.
Capabilities
AUTH for SAAS
User management, RBAC & SSO
SSO (SAML/OIDC)
Enterprise login with any IDP, self-serve setup
User management
Orgs, invites, sessions, and lifecycle
rbac
Roles, scopes, and permission checks
Widgets
Embeddable, prebuilt auth & admin UI
Agentkit
Delegated OAuth & tool calling
Connectors
500+ maintained connectors: Salesforce, Gmail, Slack, MCP
USe cases
Prebuilt agent templates and patterns to start from
Platform
Observability, security & extensibility
Interceptors
Hook into every request before it reaches your app
Auth logs
Every login, token, and session event, queryable
Security & compliance
SOC 2, data residency, and access reviews
Webhooks
Real-time events for user, org, and auth changes
Integrations
Connect to your SIEM, CRM, and data warehouse
DOCS
Resources
Customer stories
Case studies & production stories
Blog
Engineering notes & launches
Change log
What shipped this week
podcast
Conversations with agent builders
creator program
Partner with us to build & teach
for you
How Von’s agents act across every customers stack
Salesforce, Gong, Google drive and more. One auth layer, no rebuilds.
“We can keep adding tools without ever rebuilding how credentials or tool calling work”
Venu Madhav Kattagoni,
Head of Engineering, Von
Read the von story
PRICING
Talk to US
Start for free
Secure your MCP
servers with
OAuth 2.1
Drop-in OAuth 2.1 for any MCP server — user login, SSO, agent tokens, scopes, and DCR included
Start for free
View docs
Flexible authentication for every MCP deployment
Support social login, enterprise SSO, or your existing auth while Scalekit issues scoped OAuth tokens
Social Login
Authenticate with Google, Microsoft, GitHub, LinkedIn, and more
Enterprise SSO
Enable SAML/OIDC login with Okta, Entra ID, ADFS, and Google Workspace
Bring Your Own Auth
Keep your current auth (Auth0, Firebase, Supabase, custom) and layer OAuth 2.1 + scopes on top
Social Login
Social Login
Authenticate with Google, Microsoft, GitHub, LinkedIn, and more
Enterprise SSO
Enterprise SSO
Enable SAML/OIDC login with Okta, Entra ID, ADFS, and Google Workspace
Bring Your Own Auth
Bring Your Own Auth
Keep your current auth (Auth0, Firebase, Supabase, custom) and layer OAuth 2.1 + scopes on top
Built for human, agent, and server-driven MCP interactions
Secure every interaction pattern — user-initiated, agent-initiated, or server-to-server
Secure human-driven MCP access
Authenticate users via Social Login or enterprise SSO
Issue user-scoped tokens with fine-grained
tool permissions
Enforce short-lived, auditable access across all
client hosts
Read docs
Connect agents to your MCP tools
Use machine credentials for autonomous tool execution
Enforce scoped access, expirations, and revocable tokens
Build seamless agent-to-tool workflows
Read docs
Power MCP-to-API and MCP-to-MCP workflows
Use M2M tokens or cascade user tokens across
trusted systems
Build chained MCP workflows with fully
auditable authorization
Call internal or third-party APIs securely from
your MCP server
Read docs
Works with every MCP server and every MCP client
Drop Scalekit into any MCP architecture—no custom wiring needed
Server Frameworks
OAuth 2.1 layer for every MCP runtime.
MCP Clients
Client-agnostic authentication for MCP.
Make your MCP server OAuth-aware in minutes
A simple setup that fits any MCP server architecture.
Register your MCP server →
dynamic client registration supported
Expose /.well-known →
automatic endpoint discovery
Verify JWT tokens →
authenticate identity + enforce validity
Enforce scopes →
granular permissions for each agent action
Enterprise-grade security and control built in
Short-lived tokens, granular scopes, and full auditability.
OAuth 2.1 authorization server
Standards-compliant OAuth with enforced scopes and policies
Dynamic Client Registration
Automatic client onboarding with secure PKCE flows
Scoped, multi-tenant JWT tokens
Tenant-aware, least-privilege tokens with granular permissions
Audit logs & token introspection
Complete visibility into token issuance, use, and expiry
Add production-ready MCP auth in minutes
All the flows, scopes, and integrations you need out of the box
Start for free
View docs
We use cookies, so things load fast, we learn what to fix, and you can always reach us on chat
Okay, got it!