The Graphwise Platform Security Model
13/07/2027
The GWP security model provides a single, authoritative IdP (Keycloak), client-scoped tokens, and per-application authorization. It supports SSO, federation, and both internal and external M2M access via service accounts. Default realm artifacts accelerate deployment, while strict audience scoping, HTTPS, token expiry, and key rotation help ensure production-grade security.
Tip
Refer to the original Keycloak documentation for more details.