Olympus Documentation What is Olympus Architecture Repo Map License Glossary

Athena API Authentication Athena API Errors Athena API Pagination Athena Settings API SDK Settings API

Environment variables

Sequence diagrams Authorization Code + PKCE Client Credentials (M2M)Refresh token rotation RP-initiated logout Email verification roundtrip Password recovery with HMAC token Social IdP linking MFA step-up to AAL2 Brute-force lockout escalation Athena → Kratos admin Caddy → backend routing Production deploy pipeline Encryption key rotation (zero-downtime)pgAdmin OIDC SSO Claude-driven Daedalus deploy via MCP

ReferenceSequence diagrams

Sequence diagrams

Mermaid sequence diagrams for every multi-service flow in Olympus

End-to-end sequence diagrams for the major Olympus flows. Each is a single Mermaid sequenceDiagram with explanatory notes.

OAuth2 flows

Authorization Code + PKCE, the main user-facing login flow.
Client Credentials (M2M), server-to-server.
Refresh token rotation.
RP-initiated logout.

Identity flows

Email verification roundtrip.
Password recovery with HMAC token.
Social IdP linking.
MFA step-up to AAL2.
Brute-force lockout escalation.

Internal service calls

Athena → Kratos admin, admin API auth chain.
Caddy → backend routing, proxy decisions.

Operations

Production deploy pipeline, git push to running containers.
Encryption key rotation, zero-downtime.

Integration

pgAdmin OIDC SSO, DBA login via IAM.
Claude-driven Daedalus deploy, agent driving the wizard.

How these render

Mermaid is built into Fumadocs via a custom remark plugin (see site/lib/remark-mermaid.mjs and the Mermaid component).

To add a new diagram: write the sequenceDiagram code in a \``mermaidfence in any MDX file. Same forstateDiagram, graph TB`, etc.

@matcher

Named request matcher referenced by handlers.

Authorization Code + PKCE

End-to-end OAuth2 Authorization Code + PKCE flow

On this page

OAuth2 flows Identity flows Internal service calls Operations Integration How these render