AuthServer
Dashboard
Manage auth and authorization from the embedded admin UI.
The dashboard is admin UI inside your app. It covers AuthServer and FGA.
Accessing the dashboard#
Default path is DashboardBasePath (/sqlos). Register SqlOS. Call app.MapSqlOS() after Build().
Example: http://localhost:5062/sqlos/. Protect it with a password in appsettings.json (or env vars).
Auth Server pages#
| Page | URL | What you can do |
|---|---|---|
| Organizations | /sqlos/admin/auth/organizations | Create tenants, set primary domains for SSO |
| Users | /sqlos/admin/auth/users | Create users, assign passwords |
| Memberships | /sqlos/admin/auth/memberships | Link users to organizations with roles |
| Clients | /sqlos/admin/auth/clients | Register OAuth clients with redirect URIs |
| OIDC | /sqlos/admin/auth/oidc | Configure social login providers |
| SSO | /sqlos/admin/auth/sso | Set up SAML enterprise SSO |
| Security | /sqlos/admin/auth/security | Configure session and token lifetimes |
| Sessions | /sqlos/admin/auth/sessions | View and manage active sessions |
| Audit Events | /sqlos/admin/auth/audit | Review authentication events |
FGA pages#
| Page | URL | What you can do |
|---|---|---|
| Resources | /sqlos/admin/fga/resources | Browse the resource hierarchy |
| Grants | /sqlos/admin/fga/grants | Manage subject-role-resource assignments |
| Roles | /sqlos/admin/fga/roles | Define roles and link permissions |
| Permissions | /sqlos/admin/fga/permissions | View permission keys by resource type |
| Subjects | /sqlos/admin/fga/users | Manage FGA users, agents, service accounts, groups |
| Access Tester | /sqlos/admin/fga/access-tester | Test access decisions with a detailed trace |
Sessions#
The Sessions page lists who is signed in, how, which client, and when it expires.
