Overview

The AdmiralCloud Authentication Server (Auth Server) provides a robust, OAuth2-compliant authentication system that secures all services across the AdmiralCloud platform. It manages user identity, application authorization, and secure token issuance to ensure that only authorized users and applications can access protected resources.

Key Features

• OAuth2 Implementation: Fully compliant with OAuth2 standards (RFC 6749), supporting the authorization code flow for maximum security
• Multi-platform Support: Designed for browser-based applications, mobile apps, and server-to-server integrations
• Single Sign-On (SSO): Seamless integration with corporate identity providers through SAML
• Comprehensive Session Management: Handles user sessions, device tracking, and token lifecycle
• Security-focused Design: Implements security best practices including CSRF protection, short-lived authorization codes, and token expiration management

Authentication Flow

1. The client application redirects the user to the Auth Server’s Authorize endpoint
2. The Auth Server authenticates the user (via AdmiralCloud login or SSO)
3. Upon successful authentication, the Auth Server generates an authorization code and redirects back to the client
4. The client exchanges this code for an access token using the Token endpoint
5. The client uses this access token to make authenticated API requests to AdmiralCloud services

Getting Started

To implement authentication in your application:

1. Obtain client credentials from the AdmiralCloud engineering team
2. Implement the OAuth2 authorization code flow (or use our ac-authenticator-app library)
3. Add authentication headers to your API requests

Refer to our Making Authenticated Requests guide for detailed implementation instructions.

Example Code and Implementation

For working implementation examples, visit our GitHub repository with real-world code samples for various platforms and languages.