Authentication, OAuth, and Access Control

This page documents the security architecture of Palyra, focusing on identity management, session handling, OAuth2 integration (specifically for OpenAI), and the Role-Based Access Control (RBAC) system.

Authentication and Session Management

Authentication in Palyra is handled primarily by the palyra-auth crate, which manages credentials, profiles, and session lifecycles.

Auth Profiles and Registry

The AuthProfileRegistry is the central authority for managing authentication profiles. A profile contains credentials (API keys or OAuth tokens) scoped to either a global level or a specific agent crates/palyra-auth/src/lib.rs#10-21.

AuthCredential: Supports ApiKey (stored via vault reference) and Oauth (access/refresh tokens) crates/palyra-auth/src/models.rs#10-16.
AuthProfileScope: Defines whether a credential is Global or tied to a specific Agent crates/palyra-auth/src/models.rs#10-16.

Console Sessions and CSRF Protection

The Web Console uses a session-based authentication model. When a user logs in, the daemon issues a ConsoleSession which includes a principal and a csrf_token crates/palyra-control-plane/src/models.rs#8-16.

CSRF Protection: Every mutating request from the web console must include the x-palyra-csrf-token header apps/web/src/App.config-access-support.test.tsx#55-56.
Principal Binding: Admin operations are restricted to principals bound via the PALYRA_ADMIN_BOUND_PRINCIPAL environment variable crates/palyra-daemon/tests/openai_auth_surface.rs#35-36.

Auth Flow Diagram Title: Console Authentication and CSRF Flow Sources: crates/palyra-control-plane/src/models.rs, apps/web/src/App.config-access-support.test.tsx, crates/palyra-daemon/src/app/state.rs

OAuth2 and OpenAI Integration

Palyra implements a specialized OAuth2 flow for OpenAI, allowing users to authenticate via the OpenAI dashboard and refresh tokens automatically.

OAuth Refresh Mechanism

The palyra-auth crate provides an OAuthRefreshAdapter to handle background token rotation crates/palyra-auth/src/refresh.rs#17-20.

Backoff Policy: Uses ProviderBackoffPolicy to handle rate limits and provider downtime during refresh attempts crates/palyra-auth/src/refresh.rs#18-19.
Vault Integration: Refresh tokens are never stored in plain text; they are persisted as vault references crates/palyra-daemon/tests/openai_auth_surface.rs#92-96.

OpenAI Auth Surface

The daemon exposes specific endpoints for OpenAI integration:

API Key Flow: Allows manual entry of sk-... keys, which are immediately validated against https://api.openai.com/v1/models crates/palyra-daemon/src/openai_auth.rs#189-195.
OAuth Flow: Implements PKCE (Proof Key for Code Exchange) with generate_pkce_verifier and pkce_challenge crates/palyra-daemon/src/openai_auth.rs#99-107.

Code Mapping Diagram Title: OpenAI Auth Implementation Mapping Sources: crates/palyra-daemon/src/openai_auth.rs, crates/palyra-auth/src/refresh.rs, crates/palyra-cli/src/commands/secrets.rs

Access Control and RBAC

Palyra implements a robust Access Control system via the AccessRegistry, supporting Feature Flags, API Tokens, and Workspace-level RBAC.

Access Registry

The AccessRegistry is persisted in access_registry.json and manages the following entities crates/palyra-daemon/src/access_control.rs#13-22:

Feature Flags: Controls access to subsystems like compat_api, rbac, and api_tokens.
API Tokens: Used for programmatic access (e.g., OpenAI-compatible endpoints). Tokens have a token_hash_sha256 for secure verification crates/palyra-daemon/src/access_control.rs#151-173.

Role-Based Access Control (RBAC)

The system defines three primary WorkspaceRole levels crates/palyra-daemon/src/access_control.rs#76-80:

Role	Permissions
Owner	Full access including `trust.operate`, `rollout.manage`, and `workspace.manage`.
Admin	`api_tokens.manage`, `membership.manage`, and `sharing.manage`.
Operator	`sessions.use`, `memory.use`, `routines.use`, and `observability.read`.

Principal Binding

Requests are authorized based on the principal string.

Compat API: Uses authorize_compat_api_token to verify the Authorization: Bearer token against the registry crates/palyra-daemon/src/transport/http/handlers/compat.rs#110.
Rate Limiting: Enforced per-token via enforce_compat_rate_limit crates/palyra-daemon/src/transport/http/handlers/compat.rs#111.

RBAC Flow Diagram Title: Permission Evaluation Flow Sources: crates/palyra-daemon/src/access_control.rs, crates/palyra-daemon/src/transport/http/handlers/compat.rs

Secrets Management

Secrets (API keys, OAuth tokens) are managed via the Vault and the palyra secrets CLI.

Storage: Secrets are stored in the vault with a specific VaultScope (Global or Agent) crates/palyra-cli/src/commands/secrets.rs#66-67.
Redaction: The system implements “Default Redaction.” Secrets are masked in the UI unless an “Explicit Reveal” is triggered by the operator apps/web/src/App.config-access-support.test.tsx#137-142.
Auditing: The SecretsCommand::Audit function scans configurations for unresolved secret references and potential leaks crates/palyra-cli/src/commands/secrets.rs#147-155.

Sources: crates/palyra-cli/src/commands/secrets.rs, apps/web/src/App.config-access-support.test.tsx

​Authentication and Session Management

​Auth Profiles and Registry

​Console Sessions and CSRF Protection

​OAuth2 and OpenAI Integration

​OAuth Refresh Mechanism

​OpenAI Auth Surface

​Access Control and RBAC

​Access Registry

​Role-Based Access Control (RBAC)

​Principal Binding

​Secrets Management