Silverpine SSO Documentation

Base URL: https://sso.spsw.dev

Current Scaffold

The service currently exposes a health endpoint, protected admin login, app/user management pages, and starter app/user management APIs. Production SSO flows are planned for the next steps.

GET /health
GET /api/apps
POST /api/apps
GET /api/users
POST /api/users

Planned SSO Surface

The next implementation passes will add app secrets, redirect URI controls, password setup, session tracking, and real authentication endpoints. OAuth/OIDC routes should be implemented deliberately rather than documented as available before they exist.

GET /authorize
POST /token
GET /.well-known/openid-configuration

Admin Access

Admin pages follow the existing Silverpine utility pattern: form login for web access, Basic auth for compatibility, and Bearer admin token support for API automation.