Access Control
Users, roles, capabilities and feature flags for the DigiWedge platform.
Quick Start
New to Access Control? Start here:
- Getting Started - Quick integration guide
- Authentication - Login, tokens, and sessions
- User Management - Managing users and roles
Key Features
| Feature | Description |
|---|---|
| Role-Based Access Control | Assign roles to users with granular permissions |
| Multi-Tenant Support | Scoped access for organizations |
| Feature Flags | Toggle features by user, role, or tenant |
| Invitation Management | Onboard users with email invitations |
| Session Management | Track and revoke user sessions |
| MFA Support | Multi-factor authentication via SMS/authenticator |
| OAuth Integration | Google and Facebook social login |
Architecture
- Access Control API handles authentication and authorization
- Admin UI provides a web interface for managing users, roles, and permissions
- IDP (Identity Provider) issues JWT tokens and manages sessions
- Capability checks support UI route/action gating via
POST /capabilities/can
Environment URLs
| Environment | API | Admin Portal |
|---|---|---|
| Production | https://access-control-api.digiwedge.com | https://admin.access-control.digiwedge.com |
| UAT | https://access-control-api.uat.digiwedge.com | https://admin.access-control.uat.digiwedge.com |
Documentation
Guides
- Getting Started - Quick integration walkthrough
- Authentication - Login flows, tokens, MFA
- User Management - CRUD operations for users and roles
- Admin Capabilities - Platform vs tenant-scoped admin features
- Onboarding Wizard - Multi-step organization onboarding
API Reference
- API Overview - REST API endpoints and usage
- Error Codes - Invitation-specific error handling
Resources
- FAQ & Troubleshooting - Common issues and solutions
- Glossary - Key terms and definitions
TypeScript Client
Install the official client:
npm install @digiwedge/access-control-api-client
Support
For integration support, contact the DigiWedge platform team.