Authentication Providers
Stash supports the following authentication providers:
| Provider | Credentials Needed | Notes | |
|---|---|---|---|
 | Apple Account | Apple Services ID, Client Secret, Team ID, Key ID, Private Key | For Sign in with Apple (OAuth). |
 | Google Account | Client ID, Client Secret | From Google Cloud Console (OAuth 2.0 credentials). |
 | App ID, App Secret | From Facebook Developer Console. | |
| Apple Game Center | iOS/macOS Bundle ID | Used for passwordless login via Game Center. |
 | Google Play Games | Client ID, Client Secret | From Google Play Console (OAuth 2.0 credentials). |
 | Amazon Cognito | User Pool ID, App Client ID, App Client Secret (if enabled) | From AWS Cognito dashboard. |
 | Custom JWT/OIDC | OIDC Discovery URL, Client ID, Client Secret | Contact Stash support for custom/OIDC provider integration. |
Apple Game Center and Google Play Games support only passwordless login in the game client. They do not work with browser-based SSO.
Set up identity providers
Configure your identity providers in Stash Studio under Webshop settings. You can add more than one provider. Some providers require additional credentials.
For more information on using Stash Studio, see the Stash Studio Overview article in the documentation.
To add a custom or OIDC provider, contact Stash support before setting up the integration.
Set up direct sign-in and SSO
Configure sign-in and SSO in your webshop by adding provider details, such as redirect URLs and token exchange settings.
This setup does not require code or client-side development.
Configure account linking
After setting up your identity providers, configure account linking in your game client. This step requires changes in the client code.
For more information, see the Account linking article.