EcomShape
Identity Service

Secure authentication and authorization system

Enable social logins, MFA, full data encryption, GDPR processes, and flexible RBAC in just a few days. EcomShape Identity provides reliable user verification, access control, and an intuitive admin panel for complete account management.

99.99+% uptime1M+ active users10-minute integration
Identity dashboard preview

Key capabilities

A headless authentication and authorization service for e-commerce and SaaS. Clean API endpoints, full data encryption, social logins, and flexible role management — without building your own identity system.

Headless authentication API

A unified API for registration, login, session management, and social login integration. No hosted UI — just a clean and predictable API.

  • Email/password and social logins
  • Session management and token rotation
  • Full encryption of personal data

API-level MFA

Reliable two-factor authentication triggered during user login. Simple integration and a transparent verification flow.

  • Email MFA and support for authenticator apps
  • Dedicated MFA flow for login only
  • Flexible MFA activation rules per account

Flexible roles & permissions (RBAC)

Define roles, assign permissions, and control access through a single API. Suitable for multi-store setups, teams, and complex access structures.

  • RBAC with custom roles and permission sets
  • Role assignment via API
  • Real-time access validation

Admin console

A convenient UI built on top of the headless API. Manage users, roles, and audit logs without the need to build your own interface.

  • User management and advanced search
  • Role assignment and basic RBAC management
  • Activity log and event history

Real-time Analytics

Get instant user activity metrics, session statuses, and security events directly through the API.

  • Real-time event streams
  • Suspicious activity detection
  • Monitoring of active user sessions

SDK Integration

A ready-to-use SDK for quickly connecting the authentication service to your backend via a single AuthClient and API key.

  • Simple setup via AuthClient and API key
  • Dedicated methods for sign-up (signUp) and sign-in (signIn)
  • Strongly typed DTOs for secure handling of access data
Product deep dive

See Identity Service in action

A step-by-step overview of the Identity Console, covering its core features and showing an example of integrating it with an online store.

Item 1 of 2

Designed for fast integrations

Registration, authentication, and access control require minimal effort and just a few lines of code using the ready-to-use SDK or direct API calls.

Sign Up

use EcomShape\IdentitySDK\Http\AuthClient;
use EcomShape\IdentitySDK\Dto\Request\SignUpDto;
use EcomShape\IdentitySDK\Dto\Response\AccessTokenDto;

public function __construct()
{
    $this->authClient = new AuthClient(config('auth.auth_service_url'));
    $this->authClient->setApiKey(config('auth.api_key'));
}

public function signUp(SignUpDto $signUpDto): AccessTokenDto
{
    $result = $this->authClient->signUp($signUpDto);
    $params = $result->toArray();
    return AccessTokenDto::FromArray($params);
}

Sign In

use EcomShape\IdentitySDK\Http\AuthClient;
use EcomShape\IdentitySDK\Dto\Request\SignInDto;
use EcomShape\IdentitySDK\Dto\Response\AccessTokenDto;

public function __construct()
{
     $this->authClient = new AuthClient(config('auth.auth_service_url'));
     $this->authClient->setApiKey(config('auth.api_key'));
}

public function signIn(SignInDto $signInDto): AccessTokenDto
{
     return $this->authClient->signIn($signInDto);
}