Support Center
Find answers, read the docs, or reach out to our team. We typically respond within 4 hours during business days.
Frequently asked questions
How do I reset my password?
Click 'Forgot Password' on the login page. We'll send a reset link to your email. The link expires in 1 hour. You can also use a recovery phrase if you set one up in Account > Security.
Is UniAuth GDPR compliant?
Yes. We offer full data export (JSON), account self-deletion with complete data purge, configurable retention policies, and a tamper-proof audit trail. See our Trust Center for details.
Can I migrate from Auth0 / Firebase Auth?
Yes. We support bulk user import (up to 10K per batch via the admin API) and SCIM 2.0 provisioning for automated sync. See our migration guides for step-by-step instructions.
What authentication methods are supported?
Email/password (Argon2id), passkeys/WebAuthn, magic links, social OAuth (Google, GitHub, Apple with PKCE), TOTP, SMS OTP, email OTP, backup codes, recovery phrases, and device flow for IoT/CLI.
Does UniAuth support SAML?
Yes. UniAuth is a full SAML 2.0 Identity Provider with SSO, SLO, signed assertions, attribute mapping, and pairwise NameID. Connect to any SAML-compatible service provider.
Is there a self-hosted option?
Yes. UniAuth runs on any Node.js 18+ environment with PostgreSQL. Docker images and Kubernetes manifests are available. See the self-hosting guide in our docs.
What are trust tiers?
Trust tiers (T0-T4) represent the verification level of a user's identity. T0 is unverified, T4 is email-verified, T3 is phone-verified, T2 requires identity documents, and T1 requires biometric liveness verification.
How does post-quantum security work?
Every session is signed with ML-DSA-44 (FIPS 204). Key encapsulation uses ML-KEM-768 (FIPS 203). These algorithms resist attacks from both classical and quantum computers, protecting your account even after large-scale quantum computers exist.