Access Control Internal Documentation
Internal documentation for Access Control development, including service internals, IDP integration, authentication library, and operational guides.
Quick Links
- Service Overview — Data services and environment variables
- Data Model — Entities, relationships, and uniqueness constraints
- Security — AuthN/Z, CORS, and sessions
- Domain Events — Event-driven architecture and validation
Deep Dives
- IDP — Identity Provider: endpoints, OAuth, MFA, tokens
- Auth Library — NestJS authentication module and guards
- AC Library — Access Control domain layer
- UI Integration — Capabilities API and route gating
Operations
- Deployment — FQDNs, images, Kubernetes manifests
- Seeding — Database seeding commands and targets
- K8s Sync Status — Health headers and ArgoCD integration
- Metrics & Health — Health endpoints, Prometheus metrics
- Tools — CLI utilities for querying and adjusting ACL data
- Troubleshooting — Common issues and solutions
Source Modules
| Module | Path |
|---|---|
| Backend API | apps/access-control/access-control-backend |
| Admin UI | apps/access-control/access-control-admin |
| Data layer | libs/prisma/access-control-client |
| Domain library | libs/access-control |
| Auth library | libs/auth |
| Events | libs/scl/scl-events |
Public Documentation
User-facing documentation is available at access-control-docs.digiwedge.com.