Olyron Identity
One control plane for auth, orgs & trust
Olyron Identity is the universal auth layer for Omnivurse — and now for any third-party app. Hosted authentication, multi-tenant organizations, consent-driven OAuth, org-aware tokens, cross-app SSO, and a developer platform for "Sign in with Olyron."
Capabilities
Everything downstream apps expect from identity
Ship features faster: your product teams integrate once, and every Omnivurse app inherits the same trust model.
Hosted authentication
Email magic links, OAuth providers (including Google), rotating refresh tokens, and secure session cookies — managed for you.
Organizations & invites
Create orgs with slugs and roles, invite teammates by email, and accept with tokenized flows tied to your domain.
Role-based access (RBAC)
Owner, admin, member, billing, and read-only roles — mapped consistently across the Omnivurse product surface.
Org-aware JWT claims
Access tokens carry active organization context and role claims so APIs enforce tenant boundaries without extra hops.
Sign in with Olyron
Let any third-party app add "Sign in with Olyron" in two API calls — register an app, redirect users, exchange a code.
OAuth consent & app registry
Registered OAuth clients, redirect URI allow lists, client secrets, and explicit user consent for delegated access.
Cross-app SSO
Short-lived authorization codes and server-side token exchange let trusted or third-party apps share the same identity.
Tenant isolation
Row-level security patterns for org-scoped data — designed for multi-tenant SaaS and audit-friendly separation.
Security posture
Defense-in-depth defaults: least-privilege service paths, hardened callbacks, and a clear boundary between identity and apps.
Session lifecycle
Refresh rotation, sign-out everywhere patterns, and predictable cookie behavior for SSR-friendly apps.
How it fits together
From sign-in to secure API calls
A straight-line story for security reviews: authenticate, bind the user to an org, mint claims, and let every app enforce policy locally.
User
Sign in with magic link or OAuth
Olyron Auth
Session + org context
Enriched JWT
Org + role claims for APIs
Apps
Ecosystem products & partners
Put Olyron Identity in front of your next launch
Create an organization, register your app in the developer dashboard, and let users sign in with Olyron — the same path Omnivurse products use, now open to everyone.