Verge Auth Documentation
Verge Auth is a developer-first identity and access management (IAM)
platform designed for Python applications and microservices.
It helps teams add authentication, authorization, and audit logging
without gateways, heavy configuration, or policy complexity.
🔐 Verge Auth SDK
The
Verge Auth SDK is a lightweight integration library that connects your
Python services (FastAPI, Django, Flask — monoliths or microservices)
to the Verge Auth Platform — a centralized identity, role management,
and access-control system built for modern SaaS applications.
With a single line of code, your service becomes part of a unified authentication ecosystem:
from verge_auth_sdk import add_central_auth
add_central_auth(app)
What Verge Auth Provides
- Centralized Login — Users authenticate through the Verge Auth hosted login experience
- Role-Based Access Control (RBAC) — Assign roles per service and operation
- Route-Level Permissions — Routes automatically sync into the dashboard
- Group & User Management — Flexible role assignment via users or groups
- Automatic Audit Logging — Every sensitive action is recorded
- Multi-tenant Isolation — Built-in tenant separation for SaaS
- Secure Communication — All service communication is credential-secured
Supported Frameworks
How Verge Auth Works (High Level)
- Services authenticate users and sessions centrally
- Permissions are derived from real application routes
- Authorization stays in sync as code evolves
- Security events are logged automatically
🧭 End-to-End User Flow
- Account Creation — Users sign up with organization and email
- Email Verification — Verification email confirms ownership
- Login — Users authenticate via Verge IAM login page
- Dashboard Access — Users see roles, services, permissions, and audit logs
🎛 Role-Based Access Control (RBAC)
Creating a Role
- Go to Roles → New Role
- Enter name (e.g., HR Manager, Billing Admin)
- Select the service
- Assign permissions per route (Create, Read, Update, Delete)
- Save
Assigning Roles
- Assign roles directly to users
- Or assign roles to groups and add users to groups
🔌 Integrating the SDK
pip install verge_auth_sdk
from fastapi import FastAPI
from verge_auth_sdk import add_central_auth
app = FastAPI()
# Make this the last line
add_central_auth(app)
⚙ Environment Configuration
AUTH_BASE_URL=https://auth.vergeinfosoft.com
AUTH_SESSION_URL=https://auth.vergeinfosoft.com/session
AUTH_INTROSPECT_URL=https://auth.vergeinfosoft.com/introspect
AUTH_REGISTER_URL=https://auth.vergeinfosoft.com/service-registry/register
AUTH_ROUTE_SYNC_URL=https://auth.vergeinfosoft.com/route-sync
AUTH_PUBLIC_KEY_URL=https://auth.vergeinfosoft.com/auth/keys/public
AUTH_LOGIN_URL=https://auth-ui.vergeinfosoft.com/login/
VERGE_CLIENT_ID=<client-id>
VERGE_CLIENT_SECRET=<client-secret>
VERGE_SERVICE_SECRET=<service-secret>
# Secrets will be given after registration via email
SERVICE_NAME=<service-name>
SERVICE_BASE_URL=<service-base-url>
SECRETS_PROVIDER=env | AZURE | AWS | GCP | ORACLE
env=env # load from local environment
azure=<AZURE_URL>
aws=<AWS_URL>
gcp=<GCP_URL>
oracle=<ORACLE_URL>
SERVICE_NAME=<SERVICE_NAME> # example: billing-service or hr-service
SERVICE_BASE_URL=<SERVICE_BASE_URL> # example: https://hr.yourdomain.com
🛡 Security Highlights
- Asymmetric token verification with key rotation
- Centralized session & token lifecycle management
- Encrypted service credentials
- Multi-layer permission enforcement
- HTTPS-only communication
💼 Ideal For
- HRMS, ERP, CRM, Billing platforms
- Multi-tenant SaaS applications
- Microservice architectures
- Enterprise admin dashboards
🆘 Support & Onboarding
- 🌐 Website: https://www.vergeinfosoft.com
- 📧 Email: contactus@vergeinfosoft.com
Next Steps
