Ephemeral identity test rig
MockAuth
Frictionless, production-realistic OIDC flows tailored for local development and CI pipelines. Launch a deterministic provider in seconds and validate every redirect, token, and scope with confidence.
The Auth Testing Standard
A purpose-built, standards-compliant OIDC identity provider designed for testing. It simulates the behavior of a production authentication server, allowing you to validate sign-ins, token handling, and redirect logic in isolated environments without relying on real user accounts or external services. It is optimized for QA, local development, and ephemeral CI pipelines where you need reliable, repeatable, and clean auth states.
Eliminate Auth Friction
Decouple from External Dependencies
Stop wrestling with third-party rate limits, latency, or unpredictable service outages during CI/CD. Maintain complete operational independence by running your identity layer as a local, containerized service.
On-Demand Environment Provisioning
Achieve a clean state for every test run. Spin up isolated, pristine instances in seconds to ensure your E2E environment is perfectly synchronized with your application’s state and test data.
Guarantee Deterministic Test Cycles
Eliminate the "flakiness" inherent in shared staging environments. Ensure your authentication logic is verified against a stable, version-controlled provider that responds with 100% consistency, every single time.
Key Features — Production-Grade Standards
OIDC Compliant
Standard endpoints (discovery, authorize, token, userinfo, JWKS) ensure your application interacts with it exactly as it would with a live identity provider.
Secure Auth Flow
Supports Authorization Code + PKCE—the industry standard for modern web and mobile apps.
Redirect Safety
Enforces strict control over allowed redirect URLs, providing the security verification your app expects.
Key Features — Developer Experience
Admin Console
Manage tenants, clients, and RSA signing keys via a built-in UI (secured by Logto).
Multi-Tenant by Design
Separate namespaces ensure your app-specific configurations never clash across teams or environments.
Proxy Mode
Seamlessly broker OAuth/OIDC requests to an upstream IdP when you need to bridge to production services.
Deployable Anywhere
Built for the Stack
Next.js + Node + Postgres.
CI-Ready
Includes unit, integration, and E2E tests (Playwright/Vitest) out of the box.
Vercel-Optimized
Designed for rapid deployment in ephemeral environments.
Where MockAuth Excels
- 1
Autonomous Testing: You’re developing apps that require OIDC login but need to remain completely decoupled from production identity providers.
- 2
Reliability Engineering: You require consistent token validation and redirect behavior that remains stable regardless of external provider updates.
- 3
Rapid Simulation: You need to instantly model various authentication scenarios—such as specific scopes or
email_verifiedstates—without the overhead of manual user provisioning.
Quick Start
Drop MockAuth into your stack and run the full OIDC suite locally or in CI with a single command.