Aegis is Pantheon’s centralized identity and access control system.
It provides authentication and authorization for all internal services.
- Enforce consistent identity across services
- Eliminate duplicated auth logic
- Provide auditable access control boundaries
- Stateless JWT-based authentication
- Centralized role and permission model
- Service-to-service authentication support
- Audit logging for security events
- JWT access + refresh tokens
- Role-Based Access Control (RBAC)
- Token rotation and revocation
- Service identity tokens
- Security audit logs
- Codex
- Sentinel
- Forge
- Helios
- External OAuth providers
- Public identity management
- Monetization
Built a centralized authentication service with JWT rotation, RBAC enforcement, and audit logging for a multi-service platform.