Pricing | MonoCloud

Free Plan

Start building

Secure authentication essentials for prototyping and launch

$0.00per month

Production-ready authentication
Upto 50,000 MAUs
Upto 5,000 M2M tokens / month
Up to 2 groups
Essential branding
Unlimited social providers
Passkeys & Magic Links
3-day audit log retention

Pro Plan

Popular

Built for teams moving from prototype to production

$24.99per month

50,000 MAUs
Scalable
5,000 M2M tokens
Scalable
Unlimited groups
User session management
Allowlist & Blocklist controls
No MonoCloud watermark
Passkeys, Magic Links & Phone Code
7-day audit log retention

mTLSConnect

Add-on

Enforce identity with certificate-bound authentication

$199.99per month

Additional Truststore
$99.99 per month
25,000 mTLS tokens / month
Scalable
10,000 real-time OCSP validations / month
Scalable
Certificate-bound access tokens
Support for custom, cloud, or public CAs
Manage CRLs and banned certificates

ScaleX

Add-on

Built for scale, compliance, and policy-driven control

$99.99per month

Token Introspection
Session-bound access tokens
Opaque access tokens
Long-lived sessions & refresh Tokens
Client group-based restrictions
Google Analytics integration

Secure+

Add-on

Enhanced authentication with enterprise-grade security

$99.99per month

Consent-based access controls
User grants management
Back-channel logout notifications
Signed authorization requests (JAR)
Pushed authorization requests (PAR)
30-day audit log retention

Basic	Free Plan	Pro Plan
Base Price	Free	$24.99 per month
Monthly Active Users (MAU) Number of unique users who authenticate at least once during a billing cycle.	Up to 50,000 MAUs per month	Includes 50,000 MAUs per month $0.015 per additional MAU
Signup - Allowlist & Blocklist Allow or block signups based on emails, phone numbers, or custom regex.
Tenant API Keys Access and manage your tenant programmatically via API keys.	Includes 1	Up to 3
Authentication and Authorization	Free Plan	Pro Plan
Passwords Allow users to sign in with a secure password.
Password Strength & History Customization Define custom password complexity rules and enforce reuse policies.
Username Allow users to authenticate using a unique username.
Social Logins Allow users to sign in using social providers like Google, Apple, GitHub, and more.
Passkeys Allow users to authenticate securely using device passkeys and biometrics.
Email Authentication (Magic Links & OTP) Authenticate users via email magic links or one-time passcodes (OTP).
Email Auth Customization Customize OTP length, and expiration for both OTPs and Magic Links.
SMS Authentication (OTP) Authenticate users with one-time passcodes sent directly to their phones via SMS.	Up to 25 SMS per month	Includes 25 SMS per month Market rate per additional SMS or BYO SMS provider
SMS OTP Customization Configure the length and expiration duration of SMS OTPs.
Device Authentication Enable secure sign-ins on input-constrained devices using the OAuth 2.0 Device Authorization Grant.
Authenticator Restrictions Control which authenticators are permitted for each application.
Client Secrets The maximum number of secrets per application.	2 Secrets	50 Secrets
Client mTLS Authentication Verify client identity using Mutual TLS (mTLS) certificates.		mTLSConnect
Client Asymmetric Key Authentication Use asymmetric keys in JWK format to authenticate clients.		Secure+
Custom Client Secrets Define your own custom shared secrets for client authentication.
Expiring Client Secrets Create client secrets with configurable expiration.
APIs Create and manage custom API resources.	3 APIs	Unlimited
API Secrets Enable authentication for APIs.		ScaleX
API mTLS Authentication Verify API identity using Mutual TLS (mTLS) certificates.		ScaleX mTLSConnect
API Asymmetric Key Authentication Use asymmetric keys in JWK format to authenticate APIs.		ScaleX Secure+
Custom API Secrets Define your own custom shared secrets for API authentication.		ScaleX
Expiring API Secrets Create API secrets with configurable expiration.		ScaleX
Token Introspection Allow APIs to securely validate and inspect access tokens.		ScaleX
Token-Session Binding Bind access tokens to underlying user sessions for enhanced security.		ScaleX
Pushed Authorization Requests (PAR) Initiate authorization flows securely via a server-to-server backchannel.		Secure+
Backchannel Sign-out Trigger secure sign-out via backchannel.		Secure+
Frontchannel Sign-out Log users out across multiple applications within the browser.
JWT Secured Authentication Requests (JAR) Ensure request integrity by signing authorization requests as JSON Web Tokens.		Secure+
User Consent Require users to explicitly consent before applications access their data.		Secure+
Groups Organize users into groups to streamline role-based access control (RBAC).	Up to 2 groups	Unlimited
Application Group Restrictions Restrict access to an application to members of specific groups.		ScaleX
Session Management View and manage active user sessions.
View Application Grants Audit applications accessed by a user, including the number of active tokens, and authorization codes.
Revoke Application Grants Revoke user authorized API access and scopes from applications.		Secure+
Manage User Grants Manage and revoke active tokens and authorization codes tied to a user.		Secure+
Brute-Force Protection Safeguard against automated credential-stuffing by limiting failed attempts per user or IP address or both.
Long-Lived Sessions Configure the maximum duration of user sessions.		ScaleX
Long-Lived Refresh Tokens Configure the maximum duration of refresh tokens.		ScaleX
Disable User Accounts Block user access by suspending user accounts.
User Metadata Read and write custom public and private metadata to user profiles.
Machine-to-Machine (M2M) Tokens Issue access tokens for automated backend systems, agents and non-human applications.	Up to 5,000 tokens per month	Includes 5,000 tokens per month $0.0008 per additional token
mTLS Tokens Issue access tokens securely bound to client certificates using mutual TLS.		Includes 25,000 mTLS tokens per month $0.002 per additional mTLS token mTLSConnect
Real-time OCSP Validation Validate incoming mTLS client certificates against online revocation authorities (OCSP).		Includes 10,000 OCSP checks per month $0.003 per additional check mTLSConnect
Trust Stores Upload and manage trust stores to validate mTLS client certificates.		Includes 1 trust store $99.99 per additional trust store mTLSConnect
Opaque Tokens Issue opaque access tokens that require Token Introspection for validation instead of JWT verification.		ScaleX
Total Applications The total number of applications that can be registered and managed.	5	Unlimited
Email Ticket Support Communicate directly with our support team by opening an email ticket.
Discord Server Support Access peer and staff support through our active Discord community.
Analytics	Free Plan	Pro Plan
Audit Logs Track authentication activities, access attempts, and administrative events for security compliance.	3-day retention	7-day retention Extendable up to 30 days Secure+
Google Analytics Integration Forward authentication events to Google Analytics for monitoring and user insights.		ScaleX
Branding	Free Plan	Pro Plan
Remove MonoCloud Branding Remove the 'Powered by MonoCloud' branding from hosted authentication pages.
Page Customization Modify the appearance of your login pages to match your brand.	Basic	Advanced
Custom SMS Templates Create and manage branded SMS templates for authentication messages.
Terms & Conditions Display custom Terms of Service and Privacy Policies during user sign-up.
Custom Email Provider Deliver emails through your own email delivery provider.
Custom SMS Provider Deliver SMS messages through your own SMS provider.