For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
Book a demoLog inStart for free
  • Getting started
    • Overview
    • How it works
    • Quickstart
    • Project structure
    • Customer showcase
    • Changelog
  • Configuration
    • Overview
    • Site-level settings
    • Page-level settings
  • Writing content
    • Markdown basics
    • Rich media in Markdown
    • Fern Editor
    • Reusable snippets
  • AI features
    • Overview
    • Fern Writer
    • AI-generated examples
    • Markdown access
      • Overview
      • Customize LLM output
      • Agent directives
      • Analytics and integration
    • MCP server
    • API catalog discovery
      • Overview
  • Public API
    • GETJWT from Fern API key
    • GETAlgolia search credentials
    • GETCurrent user information
  • Fern Writer API
    • GETGet Fern Writer Install Link
Checking status...
SOC2Soc 2 Type II
© 2026 Fern • Birch Solutions, Inc., a Postman company

Documentation

SDKsDocsAsk FernCLI Reference

API Definitions

OpenAPIAsyncAPIOpenRPCgRPC

Resources

BlogSupportPricing

Company

Brand KitPrivacy PolicyTerms of Service
LogoLogo
Book a demoLog inStart for free
On this page
  • Which option should I use?
  • How authentication works
Authentication

Overview of authentication options

||View as Markdown|
Was this page helpful?
Edit this page
Previous

Custom robots.txt

Next

Password protection

Fern offers four ways to authenticate users on your documentation site.

Password protection

A shared password for the entire site or multiple passwords mapped to roles

SSO

Corporate credentials for internal docs

JWT

Self-managed auth integrated with your login system

OAuth

Fern-managed auth via your OAuth provider

Which option should I use?

  • Password protection — You need quick gating with a shared password (no per-user accounts). Supports multiple passwords mapped to roles for role-based access control.
  • SSO — Your team should log in with corporate credentials (Okta, Google Workspace, etc.) for internal docs or wikis.
  • JWT — You want to integrate with your existing login system and control the entire auth flow yourself. Supports role-based access control and API key injection.
  • OAuth — You want to integrate with your existing login system but have Fern manage the auth flow via your OAuth provider. Supports role-based access control and API key injection.

JWT and OAuth share the same capabilities — the difference is who manages the auth flow. Both can be used for login-only gating, or combined with RBAC and API key injection for granular access control and pre-filled API keys.

How authentication works

JWT, OAuth, and SSO are all powered by a browser cookie called fern_token that tells Fern who the user is and what they can access. The token can carry user roles for RBAC, API keys for the API Explorer, or simply verify that a user is logged in.

Password protection works differently — it uses a shared password rather than per-user tokens.