# Hawcx Authentication SDK Documentation > Hawcx is a passwordless authentication platform. These docs help you integrate Hawcx into web and mobile apps. The auth flow is server-driven: the backend tells the frontend what step to render next. ## Core Concepts - [What is Hawcx?](/docs/v1/core-concepts/what-is-hawcx): Device-bound, zero-knowledge authentication platform. No passwords, no passkeys. Ephemeral key material per session. ## Quickstart - [5-Minute Integration](/docs/v1/quickstart/5-minute-guide): Minimal end-to-end passwordless login. Frontend (React or Vanilla JS) + backend (Node.js or Python) code exchange. ## Frontend SDKs - [Web SDK Quickstart](/docs/v1/build/frontend/web/quickstart): Install @hawcx/react or @hawcx/core. State machine flow: idle → step → completed. Steps: select_method, enter_code, enter_totp, setup_totp, setup_sms, await_approval, redirect. - [Web SDK API Reference](/docs/v1/build/frontend/web/api-reference): All methods, types, step types, and error categories. - [MFA Step-Up](/docs/v1/build/frontend/web/mfa-step-up): Higher-assurance flows for sensitive actions. - [Android SDK](/docs/v1/build/frontend/android/sdk): Native Android SDK with Smart Connect (auto-detects new vs returning user, handles device trust). - [iOS SDK](/docs/v1/build/frontend/ios/sdk): Native iOS SDK with Smart Connect, Secure Enclave integration. - [React Native SDK](/docs/v1/build/frontend/react-native/sdk): Bridge to native SDKs. initialize() + authenticate() + submitOtp(). - [Flutter SDK](/docs/v1/build/frontend/flutter/sdk): Dart bridge to native SDKs. Same Smart Connect flow. ## Backend SDKs - [Node.js Quickstart](/docs/v1/build/backend/nodejs/quickstart): @hawcx/oauth-client. Exchange authCode + codeVerifier for verified claims (sub, email). - [Node.js Integration](/docs/v1/build/backend/nodejs/integrate): Full integration with user management, MFA delegation, session handling. - [Node.js API Reference](/docs/v1/build/backend/nodejs/api-reference): HawcxOAuth, DelegationClient, MfaMethod, error types. - [Python Quickstart](/docs/v1/build/backend/python/quickstart): hawcx-oauth-client. Same exchange flow in Flask/Django/FastAPI. - [Python Integration](/docs/v1/build/backend/python/integrate): Full integration with delegation client for MFA management. - [Python API Reference](/docs/v1/build/backend/python/api-reference): HawcxOAuth, HawcxDelegationClient, error types. ## Configuration - [Admin Console](/docs/v1/configure/admin%20console): Create projects, manage Config IDs, invite team members. - [Projects](/docs/v1/configure/projects): Create and manage projects. - [Flow Configuration](/docs/v1/configure/flow-config): Configure auth flows per project. Three flow types (signin, signup, account_manage). Methods: email_otp, sms_otp, magic_link, totp, qr_auth, push_approval, zkp. Policies: unknown_user, mfa_policy, device_enrollment, stepup_policy. - [Config IDs](/docs/v1/configure/config-ids): Generate and manage Config IDs (public identifiers) to connect apps to Hawcx. - [Dashboard](/docs/v1/configure/dashboard): Monitor user activity and security analytics. - [Team](/docs/v1/configure/team): Invite and manage team members and roles. ## Troubleshooting - [Troubleshooting](/docs/v1/troubleshooting): Common issues, error categories, environment setup, debugging tips. ## Integration Pattern The standard integration requires two pieces: 1. **Frontend**: Install SDK, create client with `configId`, call `start(email)`, render steps from state machine, send `authCode` + `codeVerifier` to your backend on completion. 2. **Backend**: Install oauth-client, create `HawcxOAuth({ configId })`, implement POST /exchange endpoint that calls `exchangeCode(authCode, codeVerifier)` and returns verified claims. Environment variable convention: - `HAWCX_CONFIG_ID` — your public Config ID - `HAWCX_SECRET_KEY` — backend-only credential blob (optional, for MFA delegation)