Authentication
Sign-in surface for the Liberty Framework — local users (TOML or database), OpenID Connect (Authentik, Keycloak, Azure AD, Okta), JWT lifecycle, configured from Settings → Framework → Authentication. End-to-end setup for each backend, claim mapping, session lifetime.
Roles & permissions
Access control is split between roles (named groups of permissions) and permissions (atomic codes that gate a surface). Roles are edited from Settings → Roles, assigned from Settings → Users, and the framework prunes every surface against the caller's effective permission set.
License key
The framework runs without a license on its open feature set. Licensed connectors, packaged apps and premium features are unlocked by an RS256-signed key set under Settings → Framework → License — viewed and verified live from Settings → License.