Current Features
Core Platform
- unified authentication hub for mail, HTTP, OIDC, and SAML flows
- Redis-backed caching and operational state
- LDAP and Lua authentication backends
- canonical config-v2 structure with validation and dump tooling
Policy Controls
- brute-force protection
- RBL checks
- relay-domain validation
- TLS enforcement with cleartext allowlists
- Lua environment and subject sources
Services and Observability
- backend health checks
- structured logging
- Prometheus metrics
- connection monitoring
- OpenTelemetry tracing
Identity
- native OIDC provider
- native SAML IdP
- integrated frontend
- TOTP and WebAuthn MFA
- remember-me/session controls