Auth Platform Terms of Service

Service

doxanh Identity provides application registration, passwordless email verification, magic-link and 6 digit code sign-in, auth-code exchange, email delivery support, anti-abuse controls, and admin tools.

Auth Platform verifies email challenges and issues one-time auth codes. It does not directly create another application's final logged-in session.

Registered applications

Application owners are responsible for registering accurate redirect URIs and browser origins, protecting client secrets in backend secret storage, exchanging auth codes only from trusted backend services, and creating their own application sessions.

Admin access

Admins must keep access credentials secure and use admin tools only for authorized application registration, support, security, and operational purposes.

We may suspend or restrict access to protect the service, enforce terms, prevent abuse, respond to legal obligations, or investigate security issues.

Prohibited conduct

Users, admins, and application owners must not abuse email delivery, attempt account enumeration, brute force codes, perform phishing or spam, bypass redirect/origin/rate-limit controls, register deceptive apps, expose client secrets, or interfere with service operation.

Contact

General contact: contact@doxanh.dev.

Legal contact: legal@doxanh.dev.