Identity & Access
PlatformOlyron Identity
The identity substrate every Olyron app runs on. SSO, the org graph, RBAC, and audit — shared by the entire suite.
Replaces: Auth0, Okta, WorkOS
What you get
Every capability ties back to the org graph — so the rest of the suite benefits when you turn this product on.
One org, one login, every app
SSO across CRM, Support, Orbit, Raven, and Browser. No parallel identity silos to reconcile later.
Org-aware JWTs with custom claims
org_id, active role, tenant_id, and per-app scopes flow into every downstream service automatically.
90+ RBAC permissions
Owner, admin, member, billing, read-only — plus granular per-app scopes your apps can enforce server-side.
OAuth consent for third parties
Any external app can ship 'Sign in with Olyron' and inherit your org graph via one-time codes.
Tenant isolation, audit-ready
RLS-first data patterns and an append-only audit log that doubles as signal for Secure Raven.
Olyron Identity runs on Olyron Identity
SSO, org context, RBAC, and audit come from the same substrate every Olyron app reads from. Turn on the rest of the suite when you’re ready — no new integration work.