Architecture

  • Authentication Service
  • Authorization Service
  • API Service
  • Tenant Service
  • Credentials Service
  • Session Service
  • Notification Service
  • Audit Service
  • OpenIDConnect Service
  • Provisioning Service
  • Batman Service
  • Bouncer Service

Components

This section clarifies role of various components in the Seacat Auth ecosystem.

Web User Interfaces

There are two separate Web UIs (user interfaces):

  • Seacat WebUI provides a graphical interface for Seacat Auth administration.
  • Seacat Auth WebUI provides a login form, a password reset screen, and other common-user-facing screens.

Docker and Docker Compose

The whole site installation can be dockerized and deployed using docker-compose, see the documentation.

Nginx

Nginx is used to forward requests coming from outside of the environment to protected locations. These requests are first forwarded to SeaCat Auth, where their authentication state is evaluated. If already authenticated, the request is allowed into the protected space.

MongoDB

Is employed by Seacat Auth for storage of known users and other related persistent data.