Kaiten
Self-Hosting

Identity Provider (Self-Hosted)

Configure authentication for self-hosted Kaiten deployments.

Identity Provider (Self-Hosted)

When self-hosting, you need to configure an Identity Provider for human user authentication.

Options

  1. Clerk (recommended) — see Clerk Setup Guide
  2. Any OIDC provider — see Identity Provider Guide
  3. Without auth (coming soon) — a mode for local development without an IdP

Self-Hosted Configuration

For self-hosted deployments, the key steps are:

  1. Set your IdP's JWKS URL in Traefik's JWT middleware configuration
  2. Set the CLERK_SECRET_KEY (or equivalent) in your .env
  3. Configure incoming webhooks from your IdP to sync organizations and users
  4. Ensure your frontend is configured with the IdP's publishable key

See the Authentication section for complete details.

Environment Variables

Complete reference of all Kaiten configuration variables.

Clerk Setup

Step-by-step guide to using Clerk as your identity provider with Kaiten.

On this page

Identity Provider (Self-Hosted)OptionsSelf-Hosted Configuration