Skip to content
Documentation

Quick Start

Pick the easiest path for you. All three protect every session after login.

EasiestTeam plan

DNS Proxy — zero code

Add one DNS record. We auto-inject the script and verify every request. No code changes to your app.

bash
# Add one DNS record. Done.
app.example.com  CNAME  proxy.tokenforge.opensyber.cloud

Set up in Dashboard → Zero-Code Proxy

SimpleAll plans

Script Tag — one line of HTML

Add the script to your HTML. Works in React, Angular, Vue, Next.js, or plain HTML. Auto-generates device keys and signs every request.

html
<!-- Add to index.html — works with React, Angular, Vue, or plain HTML -->
<script
  src="https://tokenforge-api.opensyber.cloud/sdk.js"
  data-api-key="tf_your_api_key"
></script>

Then add one line of server middleware to verify:

typescript
npm install @opensyber/tokenforge

// Express
app.use(tokenForgeMiddleware({ apiKey: process.env.TOKENFORGE_API_KEY! }));

// Next.js
export const GET = withTokenForge(handler, { apiKey: process.env.TOKENFORGE_API_KEY! });

// Fastify
fastify.register(tokenForgePlugin, { apiKey: process.env.TOKENFORGE_API_KEY! });
AdvancedAll plans

npm Package — full control

For React hooks, TypeScript types, or custom configuration. Same API key, same protection.

See framework guides: React, Angular, Vue, Clerk, Microsoft 365, Auth0

Native SDKsAll plans

Mobile & AI Agents

Same trust scoring engine, platform-native key storage. One API key across all platforms.

Swift (iOS), Kotlin (Android), React Native, Python, Go, MCP Server

Get your API key

Sign up with Google or GitHub. Your API key is generated automatically.

Sign Up Free

Free tier: 10,000 verifications/month. No credit card.