Auth
Standards-based OAuth and OIDC
OAuth 2.0 and OpenID Connect with explicit scopes, predictable token behavior, and account-aware access control.
Promise
Deliver OAuth and OIDC flows that platform teams can audit and control.
Proof
Explicit scopes, token lifetimes, and client metadata are managed per account.
Limits
- No opaque login UI by default.
- No automatic identity aggregation.
- No consumer login experiences.
API surface snapshot
Configure clients, scopes, and grants in a single system.
POST /oauth/clients
POST /oauth/scopes
POST /oauth/tokens
POST /oauth/scopes
POST /oauth/tokens