# Workos > Documentation for Workos ## Pages - [Workos Documentation](workos-documentation.md) - [WorkOS Documentation](workos-documentation-2.md): WorkOS provides developer-friendly APIs for enterprise features like Single Sign-On, Directory Sync, User Management,... - [Introduction](introduction.md): WorkOS Vault is a developer-friendly EKM to encrypt and optionally store data including tokens, passwords, certificat... - [Testing the API](testing-the-api.md): You can test the API directly with cURL, or use the [Postman collection](https://www.postman.com/workos/workspace/wor... - [Rate limits](rate-limits.md): WorkOS APIs are rate limited to ensure that they are fast for everyone. If you find yourself getting 429 errors, doub... - [Pagination](pagination.md): Many top-level resources have support for bulk fetches via list API methods. For instance, you can [list connections]... - [API reference](api-reference.md): The WorkOS API enables adding Enterprise Ready features to your application. This REST API provides programmatic acce... - [Errors](errors.md): WorkOS uses standard HTTP response codes to indicate the success or failure of your API requests. - [Client libraries](client-libraries.md): WorkOS offers native SDKs in several popular programming languages. Choose one language below to see our API Referenc... - [API Authentication](api-authentication.md): WorkOS authenticates your API requests using your account’s API keys. API requests made without authentication or usi... - [WorkOS Connect](workos-connect.md): WorkOS Connect is a unified interface that simplifies authentication and authorization across customers, partners, an... - [Standalone Connect](standalone-connect.md): Standalone Connect allows applications with existing authentication systems to use AuthKit as their OAuth authorizati... - [CLI Auth](cli-auth.md): CLI Auth for WorkOS Connect enables third-party applications to build command-line tools that integrate with your app... - [Widgets](widgets.md): Widgets are React components that provide complete functionality for common enterprise app workflows. - [Vault](vault.md): Vault provides centralized encryption and storage of sensitive data such as API keys, database credentials, or person... - [Object Version](object-version.md): Represents a static version of an object stored by Vault. - [Encrypted Object](encrypted-object.md): Represents an encrypted object stored by Vault. - [Encryption Key Management](encryption-key-management.md): The key management APIs can be used to generate isolated encryption keys for local encryption and decryption operations. - [Single Sign-On](single-sign-on.md): The Single Sign-On API has been modeled to meet the [OAuth 2.0](/glossary/oauth-2-0) framework specification. As a re... - [Roles](roles.md): A role is an access control resource that can be assigned to [organization memberships](/reference/authkit/organizati... - [Radar](radar.md): Radar allows you to detect, verify, and block harmful behavior in real time. The Radar API supports the management of... - [Pipes](pipes.md): Pipes provides OAuth integrations with third-party providers that allow your users to securely connect their accounts... - [Organization](organization.md): An Organization is a top-level resource in WorkOS. Each Connection, Directory, and Audit Trail Event belongs to an Or... - [Multi-Factor Authentication](multi-factor-authentication.md): The multi-factor authentication (MFA) API can be used to add additional factors of authentication to existing authent... - [Magic Link](magic-link.md): The Magic Link API can be used to add Passwordless Authentication to your app. - [Query](query.md): Use the [Query Language](/fga/query-language) to list the set of subjects that have access to a particular resource o... - [Fine-Grained Authorization](fine-grained-authorization.md): Fine-Grained Authorization (FGA) is a set of APIs designed to help you implement scalable, centralized, fine grained ... - [Check](check.md): Check if a subject has a particular relation on a resource. - [Batch Check](batch-check.md): Executes a batch of checks and returns a list of results in a single operation. - [Warrant](warrant.md): Represents a relation between resources in your application. - [Schema](schema.md): Represents the authorization model in your FGA environment. Includes resource type definitions and policies that defi... - [Resource Type](resource-type.md): Represents a type of resource and its possible relationships in your application. See [Resource Types](/fga/schema/sc... - [Resource](resource.md): Represents a resource in your application. - [Policy](policy.md): Represents a policy that defines the access control rules for your application. - [Feature Flags](feature-flags.md): Feature flags allow you to control feature availability for organizations in your application. Flags can either be en... - [Events](events.md): Events represent activity that has occurred within WorkOS or within third-party identity and directory providers. The... - [Organization domain](organization-domain.md): An organization domain represents an [organization](/reference/organization)'s domain. Domains can be verified to ass... - [Directory Sync](directory-sync.md): Directory Sync allows you to connect with directory providers to inform your application of any changes in their user... - [AuthKit](authkit.md): AuthKit is a user management platform that provides a set of user authentication and organization security features d... - [User](user.md): Represents a user identity in your application. A user can sign up in your application directly with a method like pa... - [Session tokens](session-tokens.md): The access token that is returned in successful authentication responses is a JWT that can be used to verify that a u... - [Session helpers](session-helpers.md): After authenticating and [storing the encrypted session as a cookie](/authkit/vanilla/nodejs/3-handle-the-user-sessio... - [Session](session.md): Represents an authenticated user's connection to your application. A session is created when a user signs in through ... - [Password reset](password-reset.md): Create a password reset token for a user and reset the user's password. - [Organization membership](organization-membership.md): An organization membership is a top-level resource that represents a [user](/reference/authkit/user)’s relationship w... - [Magic Auth](magic-auth.md): Magic Auth is a passwordless authentication method that allows users to sign in or sign up via a unique, six digit on... - [Logout](logout.md): End a user's session. The user's browser should be redirected to this URL. - [Get logout URL](get-logout-url.md) - [Get logout URL from session cookie](get-logout-url-from-session-cookie.md): Generates the logout URL by extracting the session ID from the session cookie. Use this over`getLogoutUrl`if you do... - [Invitation](invitation.md): An email invitation allows the recipient to sign up for your app and join a specific [organization](/reference/organi... - [Identities](identities.md): Represents [User](/reference/authkit/user) identities obtained from external identity providers. - [Email verification](email-verification.md): Email verification is a security feature that requires users to verify their email address before they can sign in to... - [CLI Auth](cli-auth-2.md): CLI Auth enables command-line applications to authenticate users through the web using the [OAuth 2.0 Device Authoriz... - [Authentication errors](authentication-errors.md): Integrating the authentication API directly requires handling error responses for email verification, MFA challenges,... - [Authentication](authentication.md): Authenticate a user with a specified authentication method. - [API Keys](api-keys.md): API keys provide a secure way for your application's users to authenticate with your API. Organization admins create ... - [Access Token](access-token.md): Set the event retention period for the given Organization. - [Audit Logs](audit-logs.md): Audit Logs are a collection of events that contain information relevant to notable actions taken by users in your app... - [Admin Portal](admin-portal.md): The Admin Portal is a standalone application where your users can configure and manage WorkOS resources such as [Conn... - [Introduction](introduction-2.md): Domain Verification allows your customers to claim ownership of a domain. Once they have claimed ownership, features ...