Admin Console
The admin console is a single-page application that provides a UI for all administration operations.
Access
Section titled “Access”Open http://localhost:5176 (or your deployed admin URL) and enter your
ADMIN_TOKEN from the .env file.
Dashboard
Section titled “Dashboard”The dashboard shows:
- Applications — list of all registered SaaS applications with status
- Login Providers — configuration status of each supported auth provider
Each application row links to the application detail page.
Application Detail
Section titled “Application Detail”The application detail page has tabbed navigation:
| Tab | Purpose |
|---|---|
| Overview | Application metadata, client ID, SSO group |
| Users | User membership management |
| Invitations | Send and revoke invitations |
| API Keys | Create and revoke M2M API keys |
| Auth Policy | Per-application authentication rules |
Registration Flow
Section titled “Registration Flow”When registering a new application:
- Fill in application ID, name, audience, redirect URIs
- Select client type (web = confidential, native = public/PKCE)
- Optionally assign to an SSO group
- On creation, client ID and client secret are shown once
- The secret is hashed in the database and cannot be retrieved later