Simplify front-end security with THE server-side Backend for Frontend (BFF) solution.

Manage tokens on the server—not in the browser—to simplify your front-end development and increase security for Angular, React, Vue, and Blazor WASM apps. Host anywhere.
Pricing
Get in touch

No tokens in the browser

Storing access tokens in the browser exposes them to XSS across every framework, library, and dependency you use.

BFF stores tokens server-side and uses encrypted, HTTP-only cookies, eliminating XSS token theft and forcing all access through controlled backend paths.

Modern browsers block cross-site cookies causing logout, session checks, and silent renew to fail. Even OAuth and OpenID Connect interactions become indistinguishable from the browser.

BFF restores reliability by keeping tokens server-side and enabling future-proof mechanisms like back-channel logout.

Resilient to changing browser security models

Simplify Your Front End with Server-Side Security

JavaScript protocol code is fragile and high-maintenance.

BFF provides a fully featured, server-side OpenID connect client library that supports all core protocols and an excellent extensibility model for advanced features like Mutual TLS, Proof-of-Possession, JWT secured authorization requests, and JWT-based client authentication.

All of our source code is on GitHub. Check out our documentation, quickstart, and samples.

Development in the open

BFF v3 vs BFF v4 comparison

Depicted is the BFF Starter Edition, allowing for up to 3 frontends whichever way you choose to deploy your application

BFFv3 provides "a" backend for a "single" frontend, where "frontend" refers to the browser-based component of an application

BFF v4 introduces a multiple frontend feature that enables hosting multiple logical backends for browser-based applications within a single physical BFF host

Need more than 3 frontends? Contact us for BFF Enterprise

Backend for Frontend (BFF) Standard License Pricing

BFF Starter Edition
  • Up to 3 front-ends
  • Blazor authentication
  • Server-side sessions
  • Backchannel logout
  • Standard developer support
  • Access to source code
$
4,000
USD /year
Contact us
BFF Enterprise Edition
  • For more than 3 front-ends
  • All Starter Edition features
  • Priority developer support with 2 escalations per year
Custom
Contact us