Authorization Server Template — Use Cases

1. SPA + API — authorization code with PKCE; gateway validates access tokens
2. Machine-to-machine — client credentials for sync jobs and internal services
3. Mobile login — same OIDC flows with PKCE and custom schemes
4. SSO-style — shared OP for multiple relying parties (product-dependent)
5. Delegated admin — restricted clients for ops tooling
6. Federation hooks — external IdP bridging (per product roadmap)

Related

• Identity — Use cases