Authentication Providers
Stash currently supports the following authentication providers:
| Provider | Credentials Needed | Notes | |
|---|---|---|---|
 | Apple Account | Apple Services ID, Client Secret, Team ID, Key ID, Private Key | For Sign in with Apple (OAuth). |
 | Google Account | Client ID, Client Secret | From Google Cloud Console (OAuth 2.0 credentials). |
 | App ID, App Secret | From Facebook Developer Console. | |
| Apple Game Center | iOS/macOS Bundle ID | Used for passwordless login via Game Center. |
 | Google Play Games | Client ID, Client Secret | From Google Play Console (OAuth 2.0 credentials). |
 | Amazon Cognito | User Pool ID, App Client ID, App Client Secret (if enabled) | From AWS Cognito dashboard. |
 | Custom JWT/OIDC | OIDC Discovery URL, Client ID, Client Secret | Contact Stash support for custom/OIDC provider integration. |
Some providers (like Apple Game Center and Google Play Games) are only available for passwordless login via the game client and do not support browser-based SSO.
Set up ID providers
Begin by configuring your identity providers in Stash Studio under your Webshop settings. You can add multiple providers; some may require additional credentials. For guidance on using Stash Studio, see the Stash Studio Overview article in the documentation.
To add a custom provider or OIDC provider, please contact Stash support first for integration assistance.
Configure direct sign-in and SSO
To enable SSO or browser-based sign-in for your webshop, simply configure your authentication providers with the required details, such as redirect URLs and token exchange settings. This process is fully no-code and does not require any client-side development.
This section is currently under construction.
Configure account linking
Once you have set up your identity providers, enabling account linking will require a few simple changes in your game client. We’ll walk through these steps in the following article.