Skip to content

Security

Learn about how to keep your data safe, access it securely and how you can produce fine grained access control for your content.

Browser security & CORS

Best security practice when using access tokens when interacting with the API.

Access Your Data (CORS)

Decide which domains may access your project data.

Access control

Sanity offers organization and project administrators to specify granular access controls to content. Users can be assigned a Role, which defines a set of grants for content edited within the Sanity studio. Depending on your plan, you can also onboard users via built-in SSO capabilities. Below are guides to both access features, along with a full API reference for specifying grants to content based on our GROQ query language.

Third-Party Login (SSO)

Describes integration with third-party authentication systems

Keeping your data safe

Best practices for access token security.

Technical limits

A list of data store limits