Files
upstash--context7/docs/security/auth-and-access-control.mdx
2026-07-13 13:04:05 +08:00

38 lines
1.2 KiB
Plaintext

---
title: Authentication and Access Control
---
This guide covers the authentication mechanisms and access controls available in Context7, including API key handling and enterprise identity features.
## API Key Security
- API keys use cryptographic random generation
- Keys are hashed and encrypted in our database
- Keys can be rotated at any time from your dashboard
- Rate limiting prevents abuse and unauthorized access
## Enterprise SSO
**Single Sign-On (SSO) is available for Enterprise plans.**
### Supported SSO Providers
- SAML 2.0
- OAuth 2.0
- OpenID Connect (OIDC)
### Enterprise Features
- Centralized user management
- Teamspace access controls
- Audit logs for compliance
- Custom authentication policies
### Setup Guides
For step-by-step configuration on self-hosted deployments, see:
- [Microsoft Entra ID (SSO)](/enterprise/security/entra-sso) — wire up Entra ID sign-in for an On-Premise instance
- [Microsoft Entra ID](/enterprise/enterprise-managed-auth/entra) — proxy the Context7 MCP server through Azure APIM with Entra authentication
Contact our sales team at [context7.com/contact](https://context7.com/contact) for Enterprise plan details.