SSO & Security
Centralized authentication via VNG SSO – OIDC and available security features across the Dokploy platform.
VNG SSO & Authentication
All systems use VNG SSO – OIDC as the sole authentication gateway — no separate passwords needed.
| System | Authentication |
|---|---|
Dokploy (host.vnggames.ai) | Sign in via VNG SSO |
GitLab (code.vnggames.ai) | Sign in via VNG SSO |
Service hosting (*.hub.vnggames.ai) | SSO template integration available |
Integrating SSO into Your Service (Optional)
If your service requires user authentication via VNG SSO, use the available SSO Template and request configuration support from the AIT team.
Contact AI Transformation - HungHNT for assistance with SSO configuration for your service.
Security Features
| Feature | Description | How to Enable |
|---|---|---|
| VNGCorp Whitelist | Blocks access from the public internet | Applied at the infrastructure level |
| VNG SSO – OIDC | Centralized authentication for *.hub.vnggames.ai | Contact AIT Team to request |
| SAST | Static Application Security Testing | Configure in GitLab repository settings |
| Secret Detection | Detects secrets and credentials in code | Configure in GitLab repository settings |
| Basic Auth | HTTP username/password prompt on your app's public URL | Configure in Dokploy's Advanced tab |
While SAST and Secret Detection are not technically mandatory, they are strongly recommended for all projects to ensure information security.