Skip to main content
NowFlowAgentic Application Layer
HomeDemoDocsBlog
Sign In

Docs

11 pages

Explore
Docs Home1
  • Overview
Getting Started2
  • Quick Start
  • Documentation Map
Platform5
  • Workflow System
  • Core Capabilities
  • Deployment
  • Resources & Knowledge
  • Observability
Operations2
  • Security & Compliance
  • Authentication
Blocks1
  • Blocks Catalog

Navigation

Mobile Docs
Final CallBuild with intent

Ready to Build with NowFlow?

Build once, publish everywhere with a unified runtime for enterprise and product teams.

Get Started Free
Agentic Workflow BuilderAI Agents300+ IntegrationsAPI DeployEmbedded UIChat SurfacesWorkflow VersioningLive CanvasHuman-in-the-LoopTeam WorkspacesEnterprise ControlsAudit LogsRuntime ObservabilityMulti-Surface LaunchAgentic Workflow BuilderAI Agents300+ IntegrationsAPI DeployEmbedded UIChat SurfacesWorkflow VersioningLive CanvasHuman-in-the-LoopTeam WorkspacesEnterprise ControlsAudit LogsRuntime ObservabilityMulti-Surface Launch
NowFlow

Agentic workflow platform by Neura Parse Ltd.

Product

  • Workflow Builder
  • AI Agents
  • Integrations
  • Pricing

Company

  • Company
  • Blog
  • Security
  • Demo Request
  • Contact

Legal

  • Legal
  • Privacy Policy
  • Terms of Service
  • Cookie Policy
  • DPA

© 2026 Neura Parse Ltd. All rights reserved.

Privacy·Terms·Cookies

Operations

Authentication

Configure identity flows, session handling, and provider integrations for secure access control.

Supported auth patterns

Email and OTP

Passwordless or OTP flows with recovery and verification steps.

SSO and OIDC

Enterprise identity providers with claim mapping and role sync.

Social providers

Microsoft, Google, and custom OAuth provider integrations.

Service tokens

Machine-to-machine access for automation and integrations.

Session model

Short-lived access tokens with refresh rotation.
HTTP-only cookies for browser sessions.
Server-side validation for privileged actions.
Idle timeout and forced re-authentication controls.

Provider setup checklist

  1. Register OAuth apps and set approved redirect URIs.
  2. Configure client IDs, secrets, and required scopes.
  3. Map provider claims to workspace roles.
  4. Test login, logout, and token refresh flows.

Troubleshooting

  • Redirect URI mismatch or trailing slash errors.
  • Clock skew causing early token expiration.
  • Missing scopes or consent not granted.
  • Blocked third-party cookies in embedded browsers.

Security best practices

  • Enable MFA for privileged roles.
  • Limit token TTL for admin accounts.
  • Rotate client secrets and revoke stale tokens.
  • Monitor suspicious login attempts and device changes.