Jug Scope Admin Console
Locked

Authenticate

Paste a valid SIWA session JWT for an allowlisted admin account and the admin API bearer. Both are held in memory only and sent as Authorization: Bearer and X-Admin-Token on every request.

SIWA-in-browser (Apple JS + /auth/siwa exchange) is a follow-up. For now the operator supplies an already-minted session JWT. No credential is ever persisted by this app — if your browser or password manager offers to save these fields, decline it.