Everything you need to integrate secure, cross-domain authentication into your apps. Start in 60 seconds or explore the full platform.
Add one script tag, configure your client ID, and call orgnet.protectPage(). Your app is protected. Seriously, that's it.
Authentication flows, JWT claim reference, RBAC model, cross-domain SSO architecture, and the complete REST API reference.
Browse docs →orgnet.js for browser apps. PHP Composer package for Laravel / server-side validation. React components for embedded auth UI.
View SDKs →Users log in once and move seamlessly across all your registered domains. The silent token derivation flow explained step by step.
How SSO works →OrgAdmin, AppAdmin, Editor, Viewer — four system roles with a full hierarchy. Permissions embedded in JWT claims, enforced locally in your app.
RBAC guide →Zero-trust security for AI agents. Service accounts, scope-locked tokens, per-agent audit logs, and rate limiting via the Client Credentials grant.
Agent security guide →All endpoints: /oauth/token, /auth/me, /token/derive, introspect, revoke, and more. With curl examples.
One user, multiple organisations. The Person → Identity model explained: how emp_id, org_id, and the active-identity flag work together.
Identity model →RS256 signing, Master Session Tokens, 15-minute Access Tokens, Redis-backed revocation in under 1ms, and JWKS key rotation.
Token reference →Sign in to access your dashboard, manage API keys, view your org's users and roles, and monitor your audit log.