Sign in
The most private auth system ever built

Identity without identity.

No email. No password. No account. No tracking. 12 words gives your users a permanent anonymous identity that works everywhere — forever.

Try YapID now Integration docs →
93% Privacy Score
0 Data Stored
<10min Integration Time
1yr Session Length
The Problem

Every auth system
betrays your users.

Traditional auth collects data it doesn't need. Email, IP addresses, device fingerprints, session metadata. All to answer one question: is this the same person?

✗ Traditional Auth

What they collect

  • Email address
  • IP address logged
  • Device fingerprint
  • Session metadata
  • Third-party SDK tracking
  • Password (hashed, but still)
  • GDPR liability
✓ YapID

What we collect

  • SHA-256 hash of public key only
  • No IP address ever stored
  • No device data
  • No metadata
  • No third-party SDKs
  • No password exists
  • Nothing to delete for GDPR
Privacy Score

We didn't just say we're private. We proved it.

Scored across 7 criteria: data collection, IP logging, identity linkability, session encryption, third-party exposure, tracking, and replay protection.

YapID BEST
93%
Ed25519 + AES-256-GCM + zero IP logs + SHA-256 wallet hash. Mathematically unbreakable with 128-bit entropy.
Wallet Connect
67%
Good for crypto users but complex setup, on-chain identity exposure, and RPC call tracking.
Auth0 / Clerk
41%
Email required, IP logged, device fingerprinted, session metadata stored. GDPR compliant but still collects everything.
Sign in with Google
12%
Your real Google identity tied to every login. Tracks across all sites. Shares data with Google.
Feature YapID Auth0 / Clerk Google Wallet Connect
No email required
No IP stored~
Unlinakble identity
Client-side AES-256 encryption~
One script tag integration~
Works without backend~
No third-party tracking~
GDPR — nothing to delete~~
Free forever~ Free tier
Privacy Score 93% 41% 12% 67%
How it works

12 words. One click.
Permanent identity.

01 — First visit
Create in seconds
Click the button. 12 BIP-39 words are generated locally in your browser. Write them on paper. You're instantly logged in. No form, no email, no waiting.
→ 12 words generated
→ Ed25519 keypair derived
→ Signature sent, not words
02 — Return visits
Auto-login for 1 year
Same browser? One click and you're in automatically. Encrypted session stored in IndexedDB with a non-extractable AES-256 key. Refresh tokens rotate silently.
→ Access token: 1 hour
→ Refresh token: 1 year
→ Auto-renewed silently
03 — New device
12 words = everywhere
Enter your 12 words on any device, any browser, anywhere in the world. Same identity, instantly. Works across every site that uses YapID.
→ Same words = same identity
→ Cross-platform ✓
→ Cross-site ✓
04 — Security
Mathematically secure
2^128 possible combinations. Even all computers on Earth combined cannot brute-force the 12 words. Ed25519 signatures are industry-standard cryptography.
→ 128-bit entropy
→ Ed25519 cryptography
→ Unbreakable by design
05 — Server
Zero knowledge
The server stores only a SHA-256 hash of your public key — not the key itself. No IP, no email, no name. A full database breach reveals absolutely nothing useful.
→ Hash(PublicKey) only
→ No reversible data
→ Breach-proof by design
06 — Control
You own your identity
Logout all devices instantly. Get notified of new logins. Your 12 words are your master key — no company, no server, no government can take your identity away.
→ Logout all devices
→ Login notifications
→ Full user control
Live Demo

Try it yourself.

Click the button. Create an account in 30 seconds. This is the exact experience your users will have.

Interactive Demo
For Developers

One line.
Any platform.

No backend required. No API key. No registration. Drop in one script tag and your users can sign in immediately.

1

Load the script

One <script> tag. Works with vanilla JS, React, Vue, Next.js — everything.

2

Add the button

One HTML element. Fully styled, customizable theme and size.

3

Handle the callback

Get accountId and isPremium. Optionally verify on your backend.

4

Or use npm

npm install yapid-js — full SDK with React hooks included.

Open Integration Builder →
your-page.html
<!-- 1. Load YapID --> <script src="https://id.yaphub.xyz/yapid-button.js" ></script> <!-- 2. Add the button --> <yapid-button theme="dark" onlogin="onLogin" ></yapid-button> <!-- 3. Handle login --> <script> function onLogin(session) { // accountId, isPremium, profile console.log('Welcome', session.accountId); // Optional: verify on backend fetch('/login', { method: 'POST', body: JSON.stringify({ token: session.access_token }) }); } </script>
npm Package

yapid-js — now on npm

Full SDK for JavaScript, Node.js, and React. One install, everything included.

Browser / Vanilla JS

Client SDK

Login, verify, refresh, logout. Full OAuth flow in a simple class.

import { YapID } from 'yapid-js'
Node.js / Backend

Server SDK

Verify tokens server-side. Express middleware included.

import { verifyToken } from 'yapid-js/server'
React

React Hook

useYapID() hook, YapIDProvider, and pre-built YapIDButton component.

import { useYapID } from 'yapid-js/react'
npmjs.com/package/yapid-js →
Open Source + Protected

Verify the code.
Trust the math.

⚖️ BSL 1.1 License

Source available. Commercially protected.

The full source code is on GitHub. Read it, audit it, verify our privacy claims yourself. No black boxes.

Competitors cannot copy and commercialize YapID for 4 years. After that, the license converts to Apache 2.0 — fully open source. Same model as Terraform, CockroachDB, and MariaDB.

⬡ View on GitHub
2026
Launch — YapID goes live under BSL 1.1. Source public, competitors cannot copy.
2027
Growth — Integrations grow. Community audits the code. ZK-Proof upgrade ships.
2029
Expansion — Premium features, enterprise integrations, API ecosystem matures.
2030
Apache 2.0 — License converts automatically. Fully open source. The standard is set.

The future of auth
is anonymous.

Join the projects already using YapID. One script tag. Zero compromises.

Try YapID free Integration docs →