Skip to content

Auth Service Configuration

Auth Service configuration is supplied through deployment values and customer secrets. Keep environment-specific values out of product documentation and store them in the customer’s approved secret system.

  • Identity provider mode and provider metadata.
  • Token validation and signing settings.
  • Platform database connection for membership, API keys, service accounts, and key metadata.
  • Key-management provider for DID and signing workflows.
  • API key and service-account secret policy.
  • Public service URLs used by Governance Studio and other platform services.
  • Health, readiness, and operational settings.

Governance Studio and all backend services must agree on the identity provider mode. A mismatch can allow sign-in to succeed while platform authorization fails.

Use managed keys, production identity-provider tenants, production-grade storage, and customer-approved secrets. Local or mock providers are for development and test environments only.