AI agents can't use most SaaS today — every signup needs a human in the UI. Notlogin lets you authorize vendors once. Agents present a verifiable credential and get a verified-human tier with no forms and no OAuth dance.
import { verifyCredential } from 'notlogin-sdk'
// In the handler an agent calls to sign up:
const cred = await verifyCredential(req.body.vcJson, {
vendorSlug: 'your-app',
requiredProofs: ['email', 'wallet'],
})
if (cred.valid) {
// verified-human tier — no signup UI, no OAuth dance
return grantApiKey({ tier: 'verified-human' })
}Three steps from human verification to autonomous agent access.
Confirm email, phone, Google, an EVM wallet or full KYC. Notlogin signs the transcript — your agents never see your password.
Pick vendors or whole categories. Set a USDC budget, scope and expiry, then issue a Notlogin-signed credential in one click.
Your agent presents the credential to any vendor. The SDK verifies the signature offline and grants a verified-human tier — no UI, no signup.
A credential the user controls, a bar the vendor sets, a signature anyone can verify.
Ed25519-signed by Notlogin over a canonical payload. Vendors verify against public keys at /.well-known — fully offline, sub-millisecond.
Each vendor declares requiredProofs. A mailer takes email; a bank takes email+sms+wallet+kyc. One credential, the vendor picks the bar.
Optionally add a user-wallet EIP-712 signature and anchor the cert hash on Base for independent, tamper-proof verification.
Every credential carries a spend budget. Vendors meter usage against it through the broker ledger — settlement-ready.
Bearer credentials with a stable nonce. Revoke instantly; vendors in online mode check the broker on every redemption.
Drop notlogin-sdk into any TypeScript backend. No API keys on the vendor side — the signature is the auth.
List in the catalog and verify credentials with a five-line SDK — no API keys to manage, the signature is the auth. Pick the proofs you require; we handle the rest.