Authentication & Authorization Documentation¶
Welcome to the MBPanel authentication system documentation. This private internal documentation is for developers, managers, and project owners.
Quick Navigation by Role¶
????¶
- Architecture Overview - System design and data model
- Security Architecture - JWT, CSRF, rate limiting
- RBAC Design - Role-based access control
?????¶
- Quick Start - Get started with auth development
- API Reference - All auth endpoints
- Auth Flows - Login, session exchange, refresh flows
- Testing Guide - Unit, integration, E2E testing
- Troubleshooting - Common issues and solutions
??????¶
- Overview - Business-friendly system overview
- Security Posture - Security controls and compliance
- Operational Metrics - KPIs and monitoring
- Tasks & Roadmap - Current work and future plans
??????¶
- Environment Variables - Configuration reference
- Error Codes - Error reference
- Glossary - Terminology
System Capabilities¶
The authentication system provides:
- Multi-tenancy: Users belong to teams with scoped access
- Role-Based Access Control (RBAC): Flexible permission system
- Two-Step Login: Secure credential verification + team selection
- Device Approval: OTP-based verification for new devices
- Suspicious Login Detection: Geo-IP based security alerts
- Session Management: Configurable idle and absolute timeouts
- Concurrent Login Control: Single-session enforcement with approve/deny
- Email Workflows: Verification, password reset, invitations
- Virtuozzo Integration: Owner-only session key management
Key Documentation¶
| Document | Description |
|---|---|
| Architecture Overview | Complete system architecture |
| API Reference | All 21+ auth endpoints |
| Auth Flows | Sequence diagrams for all flows |
| Tasks & Roadmap | Current work and future plans |
| Environment Variables | Configuration reference |
Getting Help¶
- Implementation Questions: See Developer Quick Start
- Security Concerns: See Security Posture
- Operational Issues: See Troubleshooting
- Feature Requests: See Tasks & Roadmap