- Passwords (if used) are encrypted using Argon2
- 3rd party tokens stored in separate table (SSO, etc)
- We support SSO via SAML 2.0 and we support provisioning via SCIM
- We do support 2FA on our site
- And we also support it through 3rd parties (OKTA via SAML, etc)