Coming Soon — Charon is in active development
Pitch Deck Features Providers Security Integrations
SSO · SAML · OAuth · Okta · SCIM · Web3 · KYC

One identity.
Every platform.

Universal identity provider for any application. SSO, SAML 2.0, SCIM, Okta, OAuth 2.0, OpenID Connect, Web3 wallets, KYC verification, brokerage connections, and enterprise directory sync — all through a single Rust-powered API.

View on GitHub
// Universal SSO — any provider, any protocol
POST /auth/sso
{
  "provider": "okta",
  "saml_response": "PHNhbWw..."
}
// → { access_token, refresh_token, user, org }
12+
Identity Providers
SSO
SAML & OIDC
Web3
Wallet Linking
SCIM
Directory Sync
Features
Universal identity, one API

One API handles SSO, enterprise directory sync, social login, Web3 wallets, KYC verification, and brokerage linking — for any application, any platform.

Multi-Provider Authentication
Email/password, Google, Apple, GitHub, and Microsoft OAuth. Web3 wallet signatures via MetaMask and WalletConnect. Okta, Auth0, and any OIDC provider.
OAuth 2.0OIDCWeb3
Enterprise SSO & SAML
SAML 2.0 and OpenID Connect for enterprise single sign-on. Okta, Azure AD, OneLogin, and any SAML IdP. SCIM 2.0 for automated directory provisioning and deprovisioning.
SAML 2.0SCIMOkta
KYC/AML Verification
Sumsub-powered identity verification. Document checks, liveness detection, AML screening, and tiered verification levels for regulatory compliance.
SumsubAMLTiered
Web3 Wallet Linking
Connect MetaMask, WalletConnect, and other Web3 wallets. Multi-chain support across all 8 House of Contracts chains. Signature-based verification.
MetaMaskWalletConnectMulti-chain
Brokerage Connections
OAuth integration with Coinbase, Alpaca, and Robinhood. Link brokerage accounts for unified portfolio management across Versal and Delt.
CoinbaseAlpacaRobinhood
Two-Factor Authentication
TOTP-based 2FA compatible with Google Authenticator, Authy, and 1Password. Hardware key support via WebAuthn/FIDO2 for maximum security.
TOTPWebAuthnFIDO2
GDPR Compliance
Full data export and account deletion. Right to be forgotten, data portability, consent management, and audit logging for regulatory compliance.
Data ExportDeletionAudit Log
Identity Providers
Connect with everything

Charon is a universal identity provider — enterprise SSO, social login, Web3 wallets, brokerages, and KYC verification through a single integration.

Okta
Enterprise SSO
Azure AD
Enterprise SSO
SAML 2.0
Any IdP
SCIM 2.0
Directory Sync
Google
OAuth 2.0
Apple
Sign in with Apple
GitHub
OAuth 2.0
Microsoft
OAuth 2.0
MetaMask
Web3 Wallet
WalletConnect
Web3 Wallet
Coinbase
Brokerage
Alpaca
Brokerage
LDAP
Directory
OneLogin
Enterprise SSO
Auth0
Identity Platform
Sumsub
KYC / AML
Security
Built for trust

Rust-powered, memory-safe, and battle-tested. Every layer designed for security from the ground up.

Argon2id Password Hashing
Industry-leading password hashing with Argon2id. Memory-hard, GPU-resistant, and configurable cost parameters.
RS256 JWT with Key Rotation
RSA-signed JWTs with automatic key rotation. Short-lived access tokens (1h) and secure refresh tokens (30d) stored in Redis.
Redis Rate Limiting
Per-IP and per-user rate limiting via Redis. Sliding window counters, exponential backoff, and DDoS protection.
Encrypted Token Storage
Brokerage OAuth tokens encrypted at rest with AES-256-GCM. Key management via Azure Key Vault.
Audit Logging
Every authentication event, profile change, and admin action is logged with timestamps, IP addresses, and device info.
Privacy Compliance
GDPR, CCPA, and SOC 2 compliant. Data minimization, consent tracking, and automated data retention policies.
Integrations
Universal SSO for any application

Charon issues JWT tokens that any service validates. Enterprise SSO, social login, and Web3 auth — single sign-on across any platform.

Delt
Flutter trading app calls Charon for all auth operations. Login, registration, wallet linking, and brokerage connections.
Versal
Trading terminal authenticates via Charon JWT. Brokerage account access for unified portfolio management.
Akashic
VS Code extension validates API keys through Charon. Developer identity and subscription management.
Hermes
Streaming API gateway validates Charon JWTs for authenticated data streams and pay-per-stream billing.
Noosphere Collective
Membership identity and DAO governance voting. Charon provides user identity; Collective manages tiers.
Atlas
Multi-entity platform authenticates through Charon. Team management and role-based access control.
Tech Stack
Rust-powered performance
Axum 0.7
Async Rust web framework built on Tokio. Type-safe extractors, middleware, and zero-cost abstractions.
PostgreSQL + sqlx
Compile-time verified SQL queries. Connection pooling, migrations, and full ACID compliance.
Redis
Session storage, rate limiting, and JWT blacklisting. Sub-millisecond lookups for auth validation.
ethers-rs
Web3 wallet signature verification. EIP-712 typed data signing and multi-chain address validation.
One identity.
Every platform. Total security.

SSO, SAML, SCIM, Okta, OAuth, Web3 wallets, KYC, 2FA, and GDPR compliance — universal identity in a single Rust-powered API.