Authentication

Authentication explains how users, services, and integrations prove identity before accessing AeThex systems.

Authentication model

Authentication starts with Passport and extends into API, app, and organization access.

AeThex authentication should be handled through Passport wherever possible. Passport acts as the user-facing identity layer, while APIs and backend services validate sessions, tokens, or service credentials against that identity context.

Common flows

Implementation checklist

  1. Choose the identity flow: user session, linked account, or service credential.
  2. Request only the scopes needed for the integration.
  3. Validate tokens server-side before trusting user claims.
  4. Check Permissions after authentication; identity alone is not authorization.
  5. Log security-relevant failures for audit and support.
Warning

Do not store long-lived secrets in client-side code, public repos, browser storage, or Discord bot commands.

0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9