Security / Authentication

Authentication for Google and email sign-in.

Authentication is the user-facing trust path for the SaaS control plane. Login, session handling, and tenant binding stay separate from client enrollment.

Back to securityView landing
authentication
Google auth
email login
session
SaaS login
User auth
Sign in is boring by design.

The better the auth page feels, the less it distracts from the product.

Login

Keep sign-in simple for users and separate from agent enrollment.

The SaaS product needs a normal user auth path before any deeper governance layers matter.

Google sign-in

A clean path for most hosted users.

Email sign-in

A simple fallback that keeps the product accessible.

Session state

A visible session that the app can verify and refresh.

Tenant binding

The signed-in user belongs to a clear tenant context.

Boundary

Separate user auth from client trust.

User login stays separate from agent enrollment and host trust.

User identity

Who is using the SaaS app right now.

Agent trust

Which client machine is allowed to sync state.

Logout

How to end a session cleanly.

Server verify

How the backend confirms the session state.