Commit 4c6d2a

2026-06-23 03:31:07 Anonymous: -/-
authentication.md ..
@@ 1,8 1,36 @@
# Authentication
- This page is part of the AeThex documentation system.
+ Authentication explains how users, services, and integrations prove identity before accessing AeThex systems.
- > [!NOTE]
- > This article is a placeholder and should be expanded.
+ <div class="docs-section-heading">
+ <h2>Authentication model</h2>
+ <p>Authentication starts with Passport and extends into API, app, and organization access.</p>
+ </div>
- {{PageIndex}}
+ AeThex authentication should be handled through [[Passport]] wherever possible. Passport acts as the user-facing identity layer, while APIs and backend services validate sessions, tokens, or service credentials against that identity context.
+
+ ## Common flows
+
+ - User sign-in through [[Passport]].
+ - Account linking through [[Linked-Accounts]].
+ - Organization access checks through [[Organizations]] and [[Teams]].
+ - API requests authenticated through documented credentials in [[Api-Reference]].
+ - Automation and local tooling authenticated through [[CLI]] or [[SDKs]].
+
+ ## Implementation checklist
+
+ 1. Choose the identity flow: user session, linked account, or service credential.
+ 2. Request only the scopes needed for the integration.
+ 3. Validate tokens server-side before trusting user claims.
+ 4. Check [[Permissions]] after authentication; identity alone is not authorization.
+ 5. Log security-relevant failures for audit and support.
+
+ <div class="docs-grid">
+ <a class="docs-card" href="/Passport">Passport</a>
+ <a class="docs-card" href="/Permissions">Permissions</a>
+ <a class="docs-card" href="/Security">Security</a>
+ <a class="docs-card" href="/Api-Reference">API Reference</a>
+ </div>
+
+ > [!WARNING]
+ > Do not store long-lived secrets in client-side code, public repos, browser storage, or Discord bot commands.
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9