Authentication, AI-agent identity, payments and environments. Each is a full product on its own. Together they are a single platform your apps delegate to.
A complete sign-in system for every app you run.
Identity for the machines, not just the people.
Money and identity, handled in one platform.
One app across many surfaces, one identity.
Identity, payments, groups and agents, across every app and tenant. These are real screens from the SIMEZU and KIMEZU consoles.
Password, passwordless magic links and TOTP MFA, behind a full OAuth 2.0 / OIDC provider. Run SSO across every surface of an app.
# Authorization-code flow with PKCE
curl -X POST https://simezu.com/oauth/token \
-d grant_type=authorization_code \
-d code=$CODE -d code_verifier=$PKCE
{ "access_token": "...", "id_token": "...",
"token_type": "Bearer", "expires_in": 3600 }
Agents are first-class entities. Mint scoped sk_agent tokens, give them personas, and audit every call they make.
# Mint a scoped agent token
curl -X POST https://simezu.com/agents/tokens \
-d persona="catalog-sync" \
-d scope="read:tracks"
{ "token": "sk_agent_4f9a…", "actor_type": "agent" }
Route checkout through Mollie, Stripe or PayPal. Run subscriptions, configure the receiver / app / SIMEZU split, and issue VAT-correct invoices.
// A €10.00 sale, split per app config
{
"gross": "€10.00",
"receiver": "€8.90", // payee
"app_fee": "€1.00", // 10%
"simezu": "€0.10" // 1%
}
Production, staging, marketing and white-label clone surfaces share one identity and one set of keys, each with its own policy.
// Enforce policy in your bootstrap
define('SIMEZU_APP_SLUG', 'simuze');
simezu_guard_environment();
// → forced login + access rules per environment
Generate API tokens with an audit trail, drop in themable auth forms per app, and manage every user, role and restriction from one console.
<div id="simezu-form"></div>
<script src="…/simezu-forms.js"></script>
<script>
SimezuForms.init({ app: "simuze" });
SimezuForms.loadForm("login");
</script>
Each app stores a single simezu_user_id and calls the API for the rest. Identity, permissions, sessions and payment profiles live in one place, audited end to end.
See how we secure it
Fully hosted, European, and ready in minutes.