How companies that already serve millions can make their app programmable without changing their tech stack

--

Press enter or click to view image in full size

There’s a huge gap between what programmable payments, verifiable credentials, and immutable records offer and what businesses are willing to go through to get them.

On one side payments with built-in rules, portable cryptographically verified credentials, records that no one can alter once created.
On the other side months of integration, new team specialization, wallets that scare customers, and token economics that CFOs don’t even want to look at.

XION OAuth2 closes this gap once and for all.

Your current dev team can add all these capabilities using the same OAuth2 and patterns they already use for the rest of your API stack. No crypto specialists. No wallets. No passing fees to users.

Why most projects die at the evaluation stage

The product team sees the opportunity:

• Loyalty where points truly belong to the customer and cannot be diluted;
• Verification without uploading sensitive documents;
• Cross-partner checks without exchanging raw data;
• Payments executed automatically according to set rules.

The engineering team scopes… and that’s it.
Then they need to integrate wallet libs, implement signing, fee estimation, key management. A team built entirely on REST + OAuth2 suddenly has to learn a completely different paradigm.

The project either gets shut down or outsourced at high cost.

How XION OAuth2 changes everything

Integration now looks exactly like you’ve done hundreds of times:

1. Go to the XION OAuth2 portal → register your client.
2. Deploy Treasury contract in 3 minutes (specify what actions your app can perform, redirect URI, and fee policy).
3. Implement standard OAuth2 Authorization Code flow (with PKCE or client secret whichever works for you).

• Users authorize via Google, Apple, email, or passkey.
• Your app receives scoped access token.
• Then normal REST requests to 4 endpoints. Treasury contract pays gas and strictly controls permissions. User sees nothing and pays nothing.

Integration = OAuth2 + REST.
No architecture refactoring. No new skills. No surprises for finance.

What this gives to specific company roles

Product Team
Programmable payments and verifiable credentials become a feature, not a platform migration. Enable if you want ignore if you don’t.

Engineers
OAuth2 client, 4 REST endpoints, and @burnt-labs/xion-types. CI/CD, monitoring, and error handling work as before.

Finance & Operations
Fees are controlled by Treasury contract. No volatile tokens or unpredictable costs. Budget works like any other API service.

Compliance & Security
Explicit permission model, auditable Treasury contract, standard identity providers. Zero custodial risk and zero seed phrases.

Verification an extra layer of value

Many use cases require not just recording, but verifying without collecting extra data.
XION has built-in ZK module and DKIM module. Apps can get mathematical proof (“this client spent > $1000 in 90 days”) without access to raw data.
Perfect for fintech, insurance, HR, and healthcare.

Real example

A mid-sized retailer launches a loyalty program:

• Points are programmable, portable, and immutable;
• Accrual only for verified purchases;
• One-click redemption;
• Partners check client status via zero-knowledge proof without seeing purchase history.

Dev team does everything in 1-2 sprints. Customers see a normal app. Partners get a verified response. No one touched a wallet.

How to start right now (testnet)

• Deploy Treasury contract → dev.testnet.burnt.com
• Register OAuth2 client → oauth2.testnet.burnt.com
• Implement flow (examples already available)
• Use REST API + @burnt-labs/xion-types

Full documentation: https://docs.burnt.com/xion/developers/accounts/oauth2-app

Demo (frontend + backend):
https://github.com/burnt-labs/xion-oauth2-app-demo

ABOUT XION

XION is the Trust Layer for the Internet.

It is the only L1 that rebuilds trust between people, brands, and platforms through verification, turning verified data into programmable value. From ad waste to reputation portability, loyalty programs, and private data monetization, XION solves these issues with a cutting-edge zero-knowledge verification infrastructure built atop a complete abstraction layer.

The platform is already leveraged by over 150 brands, including Uber, Amazon, and BMW. The project has raised over $36 million from top-tier investors, including Multicoin, Animoca, Circle, Hashkey, Arrington Capital, Spartan, and more.

Website | Twitter | Discord | Telegram | YouTube