Logto provides competitive plan options with transparent and affordable pricing designed for growing companies.
Free per month | Pro per month | Enterprise per month |
Base price The standard cost before extra token usage and add-ons | 0 | $24 | Contact |
MAU Maximum number of active users allowed in Logto Cloud platform in a given period (month) | Up to 50K | Unlimited* | Expanded |
| 50K | 50K included $0.08 per 100 extra | Contact |
Total applications The total amount of applications needed for integration | 3 | Unlimited* | Contact |
The application type for M2M authentication | 1 | 1 included $8 each extra | Contact |
OAuth authorization with a consent screen | - | $8 Each third-party app | Contact |
Logto as a SAML identity provider | - | $96 Each SAML app | Contact |
Resource count The number of API resources registered in Logto | - | 3 included $4 each extra | Contact |
Permission per resource The detailed permissions defined under API resources | - | Unlimited* | Contact |
Use the unique web address you own and control | |||
User-defined code that modifies the style and appearance of pre-built Logto sign-in UI | |||
Use and upload your own sign-in UI | - | ||
App logo and favicon Customize the app logo and favicon | |||
Dark mode Enable or disable the dark mode of the sign-in UI | |||
Make your product easily adapted to different languages and regions |
Multi-app and cross-domain sign in | |||
Log in with a secret password, and the password policy is configurable | |||
Log in with a one-time code sent via email or SMS | |||
Magic links for organization member invitation, user invitation, or sign-in | |||
Passkey sign-in Passkey as the first authentication factor | - | Coming soon | Coming soon |
Including pre-built email services, SMTP, HTTPS | |||
Including SMS services, API Gateway | |||
Log in through popular social accounts, Google, Github etc | 3 | Unlimited* | Contact |
Enterprise SSO Add-on Enterprise customers log in with their own identity provider, supporting SAML and OIDC | - | $48 Each connector | Contact |
Store access and refresh tokens from OAuth/OIDC providers for third-party API access | |||
Passkeys, authenticator app TOTP, SMS, email and backup codes | - | $48 All factors | |
Act on behalf of another user identity | - | ||
Secure token-based access, no credentials required | - |
Manage user authentication, authorization, and attributes directly | |||
Build a fully custom account center with APIs end users can access directly | |||
Customize sign-up fields to collect additional user information and custom data | - |
A bundled add-on the includes all the role-based access control features | - | $32 | Contact |
Define user roles and manage access to your system | - | Unlimited* | Contact |
Define machine-to-machine type roles and manage access to your system | - | Unlimited* | Contact |
A bundled add-on that includes all the organization features | - | $48 | Contact |
An organization is a group of users. Usually used in multi-tenancy apps | - | Unlimited* | Contact |
Users per organization The amount of users under each organization | - | Unlimited* | Contact |
Invite members to join the organization themselves | - | ||
Define customized roles under organizations | - | Unlimited* | Contact |
Define customized permissions under organizations | - | Unlimited* | Contact |
Require all members of an organization to enable MFA | - | ||
Assign memberships and roles to users when they first sign in | - |
Suspend users to block their logins | |||
Restrict users can sign up only by invitation | |||
Security verification Allow the app to require step-up authentication for sensitive actions | |||
Custom requirements for passwords | |||
Prevents key leaks and token tampering | |||
Seamless and secure logout across all connected apps | |||
CSRF protection Use OIDC with ‘state’ checks, PKCE, and CORS to prevent CSRF attacks. | |||
DoS protection Use Cloudflare & Azure firewall protection, flexible computing resources to prevent flood attacks, application layer attacks, etc. |
A bundled add-on with all advanced security features | - | $48 | Contact |
Provide all kinds of Captcha providers to ensure only real users can sign up | - | Contact | |
Limit login attempts to prevent brute-force attacks | - | Contact | |
Block disposable email addresses Block log in attempts from known disposable email services | - | Contact | |
Block sub-email addresses Prevent the use of "+" email addresses | - | Contact | |
Email blocklist Block users based on specific attributes or domains | - | Contact |
Send real-time data to another system when an event happens | 1 | 10 | Contact |
How long user authentication actions are stored for issue resolution, security, and compliance needs | 3 days | 14 days | Contact |
Allow to add personalized data to a user and machine-to-machine authentication token | - | ||
Number of collaborators who can access and manage the Logto cloud console. | 1 | 1 included $8 each extra | Contact |
Ask questions and share ideas with others in Discord | |||
Discord or Slack private channel Directly reach out Logto service team with a private space | - | ||
Email ticket support Directly reach out Logto service team with email communication | - | (48h) | Contact |
Premium support Faster, prioritized assistance for urgent issues | - | - | |
Developer onboarding Logto team works directly with your own developers for quick migration and onboarding | - | - | |
Solution engineer A dedicated engineer to suggest architecture and tech design | - | - | |
SLA Defines service standards and response times between you and Logto | - | - | |
Dedicated computing resources Exclusive hardware or cloud resources for improved performance, eg. geographical region | - | - |
Standards & Privacy compliant Complying with legal, and security standards (e.g., SOC 2) to protect user data and privacy | |||
SOC 2 report Provides SOC 2 compliance reports | - | ||
HIPAA/BAA Complying with HIPPA/BAA | - | - |