Authentication
Authentication
Overview of authentication methods in Alpha Platform
Authentication
Alpha Platform supports multiple authentication methods to ensure secure and convenient access.
Supported Authentication Methods
| Method | Description | Best For |
|---|---|---|
| Email/Password | Traditional credentials | All users |
| Magic Link | Passwordless email link | Quick access |
| OAuth/SSO | Google, Microsoft sign-in | Enterprise users |
| Passkey | Biometric/hardware key | High security |
Security Features
Session Management
- Sessions expire after 24 hours of inactivity
- Active sessions can be viewed and terminated
- Multi-device login is supported
Two-Factor Authentication
Additional security layer available:
- Time-based one-time passwords (TOTP)
- Hardware security keys
- Passkey authentication
Authentication Flow
graph TD
A[User visits login] --> B{Has account?}
B -->|Yes| C[Choose auth method]
B -->|No| D[Accept invitation]
C --> E[Email/Password]
C --> F[Magic Link]
C --> G[OAuth/Google]
C --> H[Passkey]
E --> I[Enter credentials]
F --> J[Receive email link]
G --> K[Redirect to provider]
H --> L[Use biometric/key]
I --> M{Valid?}
J --> M
K --> M
L --> M
M -->|Yes| N[Access granted]
M -->|No| O[Error handling]
D --> P[Set up account]
P --> CAccount Creation
Users cannot self-register. Accounts are created through:
- Administrator invitation - Admin sends email invitation
- Buyer registration - Through construction project portal
- E-commerce registration - Through shop module (if enabled)
Best Practices
For Users
- Use a strong, unique password
- Enable passkey authentication for convenience and security
- Sign out from shared devices
- Report suspicious activity immediately
For Administrators
- Enforce minimum password complexity
- Review active users periodically
- Remove access for departed employees promptly
- Monitor failed login attempts