The clerk at the door of your app.
Identity + edge for the apps that don't want to glue ten vendors together. Bring your own database.
One install. Sign-in, sign-up, password reset, social, passkeys, 2FA, organizations, audit log — wired up. Hosting too, when you want it.
- Auth — verified locally, no shared secrets between issuer and consumers
- Edge — managed certs, locked to a single CA, auto-rotates
- SDK — drop-in for modern fullstack
- Platform — one auth surface, many apps under it
GitHat is the identity layer. Every app in the platform delegates auth to api.githat.io:
| App | Domain | Role |
|---|---|---|
| GitHat | githat.io | Identity layer for the fleet |
| Sebastn | sebastn.com | Payments rail |
| ClickReserv | reserv.click | Multi-tenant booking SaaS |
| Quantl | quantl.click | Quant signals + forecasting |
| Colmado | colmado.click | Neighborhood commerce |
npx create-githat-app my-app
cd my-app && npm run devThat's it.
- ✅ Verified domains (
githat.io,www.githat.io) - ✅ Tokens verified locally — no shared secrets
- ✅ Per-app audience enforcement (no cross-tenant replay)
- ✅ Certs locked to a single CA at the apex
- ✅ Required 2FA, signed commits, branch protection, secret scanning
Security: [email protected] — see SECURITY.md Support: [email protected] Status: status.githat.io
