Platform
ScaiWave ScaiGrid ScaiCore ScaiBot ScaiDrive ScaiKey Modellen Tools & Services
Oplossingen
Organisaties Ontwikkelaars Internet Service Providers Managed Service Providers AI-in-a-Box
Kenniscentrum
Ondersteuning Documentation Blog Downloads
Bedrijf
Over ons Onderzoek Vacatures Investeren Contact
Inloggen

Authentication

ScaiCrew follows the ScaiLabs rule: ScaiKey is identity; ScaiCrew is authorization. ScaiKey proves who you are; ScaiCrew decides what you may do (which workspace, which role) and issues its own session token carrying that decision.

There are two distinct identity stories:

  • Login — how a human signs in (OAuth + PKCE through ScaiKey, a ScaiCrew-minted session token, workspace selection).
  • Identities — how each crew member gets its own ScaiKey service account so its actions are attributable and revocable.

Roles ascend viewer < operator < author < admin. Service callers are trusted at the audience level and bypass role gating.

Updated 2026-06-13 07:44:56 View source (.md) rev 2