Software Catalog¶
Project: Arlyn Labs
Date: April 2026
This page catalogs the external SaaS applications and services used across Arlyn Labs, including how each is hosted, how we authenticate, and where to access it.
Authentication Abbreviations
- JC SSO — JumpCloud Single Sign-On (SAML/OIDC via JumpCloud identity provider)
- JC SSO (via Google) — Google OAuth where the Google Workspace account is itself managed by JC SSO
- JC Credentials — Direct username/password managed in JumpCloud
- Admin Email — Shared admin e-mail account and password
- Email — Individual user e-mail + password (no SSO)
Application Catalog¶
| Application | Purpose | Hosting | Authentication | URL |
|---|---|---|---|---|
| AWS | Cloud infrastructure — compute, storage, networking | SaaS (Cloud) | JC SSO | JumpCloud Portal → AWS tile ¹ |
| Claude | AI assistant for research, writing, coding, and automation | SaaS | JC SSO / Email | claude.ai |
| Clerk | Authentication and user management platform | SaaS | Admin Email | dashboard.clerk.com |
| Cloudflare | DNS, CDN, Pages hosting, and Zero Trust access control | SaaS | Admin Email | dash.cloudflare.com |
| Expo | Mobile app build, publish, and OTA update platform | SaaS | Admin Email | expo.dev |
| Figma | Design and prototyping tool | SaaS | Admin Email | figma.com |
| GitHub | Source code hosting, version control, and CI/CD | SaaS | github.com/orgs/ArlynLabs | |
| Google Workspace | Business email, calendar, Drive, Meet, and productivity suite | SaaS | JC SSO | mail.google.com |
| JumpCloud | Identity provider — SSO, MFA, and device management | SaaS | JC Credentials | console.jumpcloud.com |
| Linear | Engineering project management — issues, sprints, roadmaps | SaaS | JC SSO (via Google) | linear.app/arlynlabs |
| Slack | Team messaging and internal communications | SaaS | JC SSO | arlynlabs.slack.com |
¹ Individual users access the AWS Console by logging into JumpCloud and clicking the AWS tile. The direct sign-in URL (arlyn-main.signin.aws.amazon.com) is for Arlyn Admin users only.
Authentication Methods¶
JumpCloud SSO (JC SSO)¶
Most applications use JumpCloud as the identity provider via SAML or OIDC. Users log in with their JumpCloud credentials and are granted access through the configured SSO integration. See the Access Control section for setup details.
JC SSO via Google¶
Linear authenticates through Google OAuth, but the underlying Google Workspace account is itself managed and provisioned by JumpCloud SSO. In practice this means your @arlyn.io Google account is the credential — and that account is controlled by JumpCloud.
JumpCloud Credentials¶
The JumpCloud admin console itself is accessed with native JumpCloud administrator credentials.
Admin Email¶
Cloudflare is managed through a shared administrative account. Credentials are stored in the company password manager.
Email (No SSO)¶
GitHub uses individual user accounts authenticated with email and password (plus 2FA). GitHub accounts should have 2FA enabled at all times.
Adding a New Application¶
When onboarding a new third-party tool:
- Evaluate whether JumpCloud SSO integration is available and configure it if so.
- Add the application to the Access Control configuration if it will be protected by Cloudflare Access.
- Update this catalog with the application's details.
- Store any shared credentials in the company password manager.