Authentication Methods
Granite supports two authentication methods:Magic Link
Passwordless email authentication
Google OAuth
Sign in with your Google account
How It Works
Session Management
After authentication:- Session cookie stored securely (HTTP-only)
- Valid for 7 days by default
- Automatic refresh on activity
- Secure logout clears the session
Multi-Organization Support
One account can belong to multiple organizations:- Same email, different orgs
- Switch between orgs instantly
- Separate permissions per org
API Authentication
For programmatic access, use API keys instead of user sessions:Security Features
| Feature | Description |
|---|---|
| HTTP-only cookies | Session tokens can’t be accessed by JavaScript |
| HTTPS only | All traffic encrypted in transit |
| Session expiration | Automatic logout after inactivity |
| Single logout | Sign out from all devices |