Product Roadmap

Building the Future of Identity Management

Our roadmap is shaped by customer feedback and real-world enterprise needs. See what we're working on and what's coming next. Want to influence our direction? Contact us to share your requirements.

Current Release

STABLE

ZenoAuth v1.0

Production-ready identity management in a single 11 MB binary. Complete OAuth 2.0, OpenID Connect, SCIM v2, and LDAP support.

Core Features

  • ✅ OAuth 2.0 Authorization Server
  • ✅ OpenID Connect Provider
  • ✅ Pushed Authorization Requests (PAR)
  • ✅ Dynamic Client Registration (DCR)
  • ✅ Rich Authorization Requests (RAR)
  • ✅ SCIM v2 Inbound & Outbound
  • ✅ SCIM Nested Groups (RFC 7643)
  • ✅ Groups Management
  • ✅ Custom Scopes
  • ✅ Multi-Factor Authentication
  • ✅ WebAuthn / Passkeys
  • ✅ SMS/Email OTP
  • ✅ Magic Link Authentication
  • ✅ Role-Based Access Control (RBAC)

Admin & Operations

  • ✅ Next.js Admin Dashboard
  • ✅ Terminal UI (TUI)
  • ✅ Real-time Analytics
  • ✅ Comprehensive Audit Logs
  • ✅ Token Management
  • ✅ User Portal
  • ✅ Docker Deployment
  • ✅ Background Job Scheduler

Enterprise Features

  • ✅ Multi-Tenancy (Organizations)
  • ✅ LDAP/Active Directory Sync
  • ✅ GDPR Compliance & Data Export
  • ✅ Session Management
  • ✅ Trusted Devices
  • ✅ Emergency Access (Break Glass)
  • ✅ Custom Domains
  • ✅ Advanced Rate Limiting

Planned Features

PLANNED

SAML 2.0 Support

Enterprise SAML integration as both Identity Provider and Service Provider. Full XML signature support for secure assertion handling.

PLANNED

Webhook Events

Real-time event notifications for user lifecycle events, authentication, and administrative actions. Enable custom integrations and workflows.

PLANNED

Risk-Based Authentication

Intelligent authentication that adapts based on risk signals like device trust, location, and behavioral patterns.

PLANNED

High Availability Mode

Clustered deployment support with distributed caching, session replication, and automatic failover for mission-critical deployments.

PLANNED

Policy-as-Code

Define access policies using code. Version-controlled, testable authorization rules with support for OPA/Rego or similar policy languages.

Under Consideration

These features are being evaluated based on customer demand and enterprise feedback. Contact us to share your priorities and requirements.

Authentication

  • • Push Notification Auth
  • • Device Trust Scoring
  • • Passwordless-only Mode
  • • Step-up Authentication

Integration

  • • GraphQL API
  • • Terraform Provider
  • • Kubernetes Operator
  • • Azure AD B2C Migration

Compliance

  • • SOC 2 Reporting Tools
  • • Automated Compliance Checks
  • • Data Residency Controls
  • • HIPAA Compliance Mode

Shape the Future

ZenoAuth is built for enterprises. Your feedback directly influences our roadmap. Contact us to share your requirements and priorities.

Contact Us View Pricing Documentation