Autional Autional
API Reference GitHub autional.com →

GET /public/auth-config/by-slug/{slug}

Get public authentication configuration by tenant name/slug. No authentication required.

Authentication None application/json

Request Parameters

NameInTypeRequiredDefaultExampleConstraintsDescription
slug path string Yes Tenant name or slug

Responses

StatusDescriptionSchema
200Authentication configurationgitee_com_linmes_authms_base_dto.DataResponse-dto_PublicAuthConfigResponse

Referenced Schemas

dto.BrandingInfo

Login page branding (Logo/Primary color/Custom CSS/Privacy policy URL)

FieldTypeRequiredExampleConstraintsDescription
company_name string No My Company
custom_css string No .login-btn { border-radius: 12px; }
favicon_url string No https://cdn.example.com/favicon.ico
login_page_description string No Sign in to your account
login_page_title string No Welcome
logo_url string No https://cdn.example.com/logo.png
primary_color string No #3b82f6
privacy_policy_url string No https://example.com/privacy
secondary_color string No #10b981
terms_of_service_url string No https://example.com/terms

dto.ComplianceProfileInfo

Tenant selected compliance standard info

FieldTypeRequiredExampleConstraintsDescription
resolved_at string No 2026-06-15T10:00:00Z
standards array of

string

No ['["nist_sp800_63b_v4"', '"dengbao_l3"]']

dto.ComplianceWarningItem

Gap between current configuration and compliance standard

FieldTypeRequiredExampleConstraintsDescription
current object No 8
description string No NIST v4 AAL2 requires 15 characters
parameter string No password_min_length_sfa
required object No 15
severity string No high

dto.PasswordPolicyResponse

Password policy configuration

FieldTypeRequiredExampleConstraintsDescription
captcha_enabled boolean No Enable CAPTCHA verification
change_cooldown_minutes integer No 0 Password change cooldown time
expiry_days integer No 90 Password expiration days
force_change_on_first_login boolean No Force password change on first login
grace_period_days integer No 7 Expiration grace days
history_count integer No 5 Password history retention count
login_methods array of

string

No
max_length integer No 128 Maximum length
min_length integer No 8 Minimum length
oauth_providers array of

string

No
password_transmission string No Password transmission method
pepper_enabled boolean No US-P13: Server-side Pepper encryption enabled
require_digit boolean No True Require digit
require_lower boolean No True Require lowercase letter
require_special boolean No True Require special character
require_upper boolean No True Require uppercase letter
sso_providers array of

string

No
unicode_allowed boolean No Allow Unicode passwords (NFC normalized)

dto.PublicAuthConfigResponse

Public authentication configuration, including tenant basic info, password policy, brand customization

FieldTypeRequiredExampleConstraintsDescription
branding dto.BrandingInfo No
breach_check_enabled boolean No
captcha_enabled boolean No
captcha_provider string No
compliance_profile dto.ComplianceProfileInfo No
compliance_warnings array of

See dto.ComplianceWarningItem

No
cross_tenant_switch_enabled boolean No
device_fingerprint_enabled boolean No
display_name string No My Tenant
login_methods array of

string

No
magic_link_enabled boolean No
max_concurrent_sessions integer No
membership_approval string No
oauth_client_id string No app-01KV1ZCSJ5ZJ8G78B4TDG398NK
oauth_providers array of

string

No
passkey_enabled boolean No
password_policy dto.PasswordPolicyResponse No
pepper_enabled boolean No
silent_challenge_enabled boolean No
sso_providers array of

string

No
tenant_id string No tnt_xyz789
tenant_name string No my-tenant
transmission_nonce string No
transmission_nonce_expires_at string No
transmission_public_key string No
transmission_public_key_id string No

gitee_com_linmes_authms_base_dto.DataResponse-dto_PublicAuthConfigResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
data dto.PublicAuthConfigResponse No
message string No
timestamp string No