$HEADLESS SYSTEMS
03 / Scorecard / Auth & Identity

Kinde

C
Headless Index
58/100
JAIRF
88.6/100
AI-Ready
Verified
MAY 21, 2026
Methodology v1 · JAIRF v1.0.0

Powered by JAIRF v1.0.0 by Jentic · open methodology at /the-headless-index/methodology

Editorial verdict
Kinde is partially headless and partly UI-led. The Headless Index thesis-fit score of 58/100 puts it mid-table on the index, and JAIRF v1.0.0 puts it at 88.6/100 (Level 3, AI-Ready). In practice, vendors at this tier are partly machine-consumable: the core flows are reachable through code but several adjacent surfaces still expect a human at a dashboard, and the rest of this verdict explains where Kinde lands inside that pattern. On the API surface, the question is whether the API is the product or a layer beneath the dashboard. Kinde is a modern, developer-focused identity product with a REST Management API and SDKs across Node, Python, Go, PHP, Ruby, .NET, and React-class web frameworks. The API covers users, organisations, roles, permissions, feature flags, billing, and webhooks. The product is API-first by design.[1] Schema observability is the related test: can an agent introspect the contract from cold, or does it have to read prose documentation to do so? REST API is documented in detail at kinde.com/api. A public OpenAPI URL is not prominently exposed in the headline docs but SDK code generation implies one exists. Cold schema discovery requires docs context.[2] An agent can drive parts of this product, but not all of it: integrators should plan for human-in-the-loop checkpoints where the headless surface stops short. On headless operability: User and organisation CRUD, role and permission management, custom properties, MFA, environment configuration, and feature flag authoring are all programmable. The Kinde CLI adds shell access. Documentation is dense and well organised.[3] On the MCP and agent-integration axis, which is the fastest-moving criterion in the index: Kinde has not published a first-party MCP server. The product is shaped around developer tooling and could plug into MCP relatively easily; for now the integration story is community-led.[4] Event posture closes the loop: an agent that cannot react to state changes is reduced to polling. Webhooks cover user, organisation, role, and authentication events with HMAC signing. The catalog is modest but well-shaped for the SaaS-app identity use case. Net assessment: integrators can build agent flows against Kinde, but the rough edge to plan around is MCP posture[5]. Expect to wrap missing pieces in bespoke glue or accept human-in-the-loop checkpoints. Workable but requires scaffolding.
Verdict by Headless Index pipeline (auto)
// AI-drafted from the evidence layer. Editorial review pending.
Scores

Scorecard detail

Headless Index · 5 sub-criteria
API-first design intent16/20
scored

Kinde is a modern, developer-focused identity product with a REST Management API and SDKs across Node, Python, Go, PHP, Ruby, .NET, and React-class web frameworks. The API covers users, organisations, roles, permissions, feature flags, billing, and webhooks. The product is API-first by design.

signals (6)
  • +AI review appliedReviewer: Editorial review on 2026-05-20
  • +OpenAPI specPublished, 0 operations
  • GraphQL endpointNot discovered (5 probes; project-scoped endpoints require a real project ID)
  • +SDKs maintained27 (dotnet, go, java, javascript, kotlin, php, python, ruby, swift, typescript); top by stars: kinde-oss/kinde-auth-nextjs (185 stars)
  • +SDK recency14 of 27 SDK repos pushed within 30 days (most recent SDK commit: 2026-05-19)
  • +npm weekly downloads79.6k across published packages; top: @kinde-oss/kinde-typescript-sdk @ 24.8k/week
cite (1)
  • github.sdks@2026-05-19
Headless operation14/20
scored

User and organisation CRUD, role and permission management, custom properties, MFA, environment configuration, and feature flag authoring are all programmable. The Kinde CLI adds shell access. Documentation is dense and well organised.

signals (9)
  • +AI review appliedReviewer: Editorial review on 2026-05-20
  • API operations exposedOpenAPI present but operations could not be counted
  • ·Docs pages crawled0 pages (crawler: none)
  • ·Auth schemes documentedAuth documentation page not reached by crawler
  • ·Setup / quickstart docsNot reached by crawler
  • ·Billing docsNot reached by crawler
  • ·Teams / org docsNot reached by crawler
  • ·CLI docsNot reached by crawler
  • ·Schema / data model docsNot reached by crawler
cite (1)
  • github.sdks@2026-05-19
MCP & agent posture4/20
scored

Kinde has not published a first-party MCP server. The product is shaped around developer tooling and could plug into MCP relatively easily; for now the integration story is community-led.

signals (4)
  • +AI review appliedReviewer: Editorial review on 2026-05-20
  • Official MCP serverNone found in vendor's GitHub org or the official MCP registry
  • Community MCP serversNone found
  • +Agent-friendly SDKs12 TS/JS SDKs available; top: @kinde-oss/kinde-auth-react (23.7k/week downloads)
cite (1)
  • github.sdks@2026-05-19
Schema observability12/20
scored

REST API is documented in detail at kinde.com/api. A public OpenAPI URL is not prominently exposed in the headline docs but SDK code generation implies one exists. Cold schema discovery requires docs context.

signals (3)
  • +AI review appliedReviewer: Editorial review on 2026-05-20
  • +OpenAPIPublished at https://api-spec.kinde.com/kinde-management-api-spec.yaml (OpenAPI undefined, 0 operations)
  • GraphQL introspectionNo GraphQL endpoint discovered (5 probes; some vendors use project-scoped endpoints that require a real project handle)
cite (1)
  • github.sdks@2026-05-19
Webhooks & events12/20
scored

Webhooks cover user, organisation, role, and authentication events with HMAC signing. The catalog is modest but well-shaped for the SaaS-app identity use case.

signals (2)
  • +AI review appliedReviewer: Editorial review on 2026-05-20
  • ·Webhook docs pageNot reached by crawler within budget (0 pages crawled). Cannot confirm whether vendor offers webhooks.
cite (1)
  • github.sdks@2026-05-19
JAIRF · 6 dimensions
FCFoundational Compliance
100/100

Structural validity, standards conformance, and parsability of the OpenAPI specification.

DXJDeveloper Experience & Tooling Compatibility
77.9/100

Documentation clarity, example coverage, response completeness, and ingestion health.

ARAXAI-Readiness & Agent Experience
92.1/100

Semantic clarity, intent expression, datatype specificity, and error standardization.

AUAgent Usability
90/100

Operational composability, complexity comfort, navigation affordances, and safety patterns.

SECSecurity
80/100

Authentication strength, transport security, secret hygiene, and OWASP risk posture.

AIDAI Discoverability
85/100

Descriptive richness, intent phrasing, workflow context, and registry signals.

Band rationale:C band: scores 40-75 range

04 / Embed

Show Kinde's score on your site.

Drop a live badge into your README, footer, or marketing page. It updates automatically when we re-score, and every embed is a dofollow link back here.

Kinde mini badge preview
Get embed code
Peers in Auth & Identity
PropelAuthB
Headless Index 60/100
SuperTokensC
Headless Index 54/100
ClerkC
Headless Index 54/100
See full Auth & Identity ranking →