QuantumID

February 20, 2026 February 20, 2026 v0.1.x-beta

What is QuantumID?

QuantumID is the identity and access management (IAM) layer of the QuantumAPI platform. It provides Single Sign-On (SSO), OpenID Connect (OIDC), Multi-Factor Authentication (MFA), user management, and federation with external identity providers — all secured with post-quantum cryptography.

QuantumID is built for multi-tenant SaaS applications. Each tenant gets isolated user pools, configurable authentication flows, and full control over branding, connections, and security policies.

Key Features

Single Sign-On

OpenID Connect and OAuth 2.0 with PKCE. Authorization code flow, client credentials, and refresh tokens.

Multi-Factor Authentication

TOTP, WebAuthn/passkeys, email magic links, and backup codes. Configurable per-tenant enforcement.

User Management

End-users and team members with role-based access. Bulk import from CSV, Auth0, or Keycloak.

Federation

Connect Entra ID, Google, GitHub, Okta, or any OIDC/SAML provider. JIT provisioning and group sync.

Post-Quantum Security

ML-DSA-65 signed JWT tokens and QRNG entropy. Future-proof your authentication against quantum threats.

SCIM 2.0 Provisioning

Automated user and group provisioning from your identity provider via the SCIM standard (RFC 7643/7644).

Architecture

QuantumID runs as a standalone identity server that your applications connect to via standard OIDC/OAuth 2.0 protocols. It uses PostgreSQL for identity storage, Redis for sessions, and QuantumVault for key management.

Quick Start

Get up and running with QuantumID in four steps:

Create an application

In the Tenant Portal, go to QuantumID → Applications and create a new OIDC application. Note the Client ID and configure your redirect URIs.

Configure OIDC settings

Set the allowed grant types (authorization code + PKCE recommended), scopes, and token lifetimes.

Add users

Create users manually, import via CSV/JSON, or enable a federation connection so users can sign in with their existing credentials.

Integrate your application

Use any OIDC client library (oidc-client-ts, next-auth, etc.) to redirect users to your QuantumID login page.

Documentation Sections

SSO & OIDC

OAuth 2.0 flows, token management, session configuration, and endpoint reference.

User Management

User types, roles, bulk import, SCIM provisioning, and API reference.

Multi-Factor Authentication

TOTP, WebAuthn/passkeys, magic links, backup codes, and device trust.

Federation

External identity providers, OIDC/SAML setup, Entra ID guide, and lazy migration.

Settings

Encryption defaults, session policies, notifications, audit retention, and environment configuration.