Hanko

Hanko is an open source authentication platform that handles user onboarding and login for web applications. It covers the full range of modern auth methods: passkeys, email passcodes, passwords, social logins, SSO, and multi-factor authentication with TOTP apps or security keys. You can mix and match these into exactly the flows your app needs.

It's built for developer teams who want solid auth without building it from scratch or handing full control to a closed-source provider like Auth0. Unlike Keycloak, which is powerful but notoriously complex to configure, Hanko is designed to integrate in minutes. Unlike Logto or Stack Auth, Hanko puts particular emphasis on passkeys as a first-class citizen.

Key capabilities:

• Hanko Elements are drop-in Web Components for login, registration, and account management. They work with any web stack and require only HTML and JavaScript.
• Flow API drives your authentication frontend state, so your UI always knows what step to show next, whether that's email verification, MFA enrollment, or a passkey prompt.
• Profile Element gives users a self-service UI for password resets, session management, passkey registration, and MFA setup.
• Social login and SSO support out of the box, including Google and other OAuth providers.
• Flexible hosting: run it on your own servers, use Hanko Cloud, or have the team manage a private cloud environment on infrastructure you choose.

Hanko is developed by a Germany-based team and offers EU hosting options, making it a practical fit for teams with GDPR obligations. It supports multiple languages and is designed to stay GDPR compliant by default.

For teams evaluating Better Auth or Authentik, Hanko sits in a distinct position: it's opinionated toward passkey-first flows while still being flexible enough to support legacy password auth during a gradual migration.