docs: Add Dashboard Product and SSO Page (#2850)

Co-authored-by: Devin Logan <[email protected]>

Author: alecharmon

fern/docs.yml

@@ -45,6 +45,13 @@ products:
     slug: ask-fern
     subtitle: Let users find answers in your documentation instantly
 
+  - display-name: Dashboard
+    path: ./products/dashboard/dashboard.yml
+    icon: fa-regular fa-grid-2
+    image: ./images/product-switcher/product-switcher-dashboard-light.png
+    slug: dashboard
+    subtitle: Manage your Fern projects and settings
+
   - display-name: CLI Reference
     subtitle: Manage and configure your Fern projects
     path: ./products/cli-api-reference/cli-api-reference.yml

fern/images/product-switcher/product-switcher-dashboard-dark.png

@@ -0,0 +1,13 @@
+navigation:
+  - section: Getting started
+    contents:
+      - page: Overview
+        path: ./pages/overview.mdx
+  - section: Configuration
+    contents:
+      - page: Member permissions
+        path: ./pages/permissions.mdx
+        slug: permissions
+      - page: Set up SSO
+        path: ./pages/sso.mdx
+        slug: sso

fern/images/product-switcher/product-switcher-dashboard-light.png

@@ -0,0 +1,103 @@
+---
+title: Dashboard overview
+description: Manage your Fern projects, settings, and team from a central dashboard.
+---
+
+The Fern Dashboard provides a central place to manage your projects, team members, and settings.
+
+## Setup
+
+Visit your team's [Dashboard](https://dashboard.buildwithfern.com/) and complete initial setup steps:
+
+<CardGroup cols={3}>
+  <Card
+    title="Add team members"
+    icon="regular users"
+    href="/learn/dashboard/permissions"
+  >
+    Add team members and assign roles to control their access levels.
+  </Card>
+  <Card
+    title="Integrate GitHub"
+    icon="brands github"
+  >
+    Connect your GitHub repository to your project.
+  </Card>
+  <Card
+    title="Enable Ask Fern"
+    icon="regular message-bot"
+  >
+    Set up AI-powered chat for your documentation.
+  </Card>
+</CardGroup>
+
+## Ongoing usage
+
+Once you've completed initial setup tasks, use your dashboard to monitor and manage your documentation:
+
+<CardGroup cols={3}>
+  <Card
+    title="Site information"
+    icon="regular info-circle"
+  >
+    View deployment status, domains, CLI version, and GitHub repo details.
+  </Card>
+  <Card
+    title="Web analytics"
+    icon="regular chart-line"
+  >
+    Track how developers and bots interact with your documentation.
+  </Card>
+  <Card
+    title="Search analytics"
+    icon="regular magnifying-glass"
+  >
+    Monitor search queries to understand what developers are looking for in your docs.
+  </Card>
+  <Card
+    title="Feedback"
+    icon="regular comment-dots"
+    href="/learn/docs/user-feedback"
+  >
+    View and respond to on-page feedback.
+    <p className="text-(color:--grayscale-a11) font-bold mt-2 flex items-center gap-1">
+    Learn more
+
+    <img src="https://files.buildwithfern.com/fern.docs.buildwithfern.com/learn/2025-09-30T17:39:54.370Z/products/home/pages/images/arrow-right-black.svg" alt="Arrow right light" className="arrow-right dark:hidden m-0 h-4 w-4" noZoom />
+
+    <img src="https://files.buildwithfern.com/fern.docs.buildwithfern.com/learn/2025-09-30T17:39:54.370Z/products/home/pages/images/arrow-right-white.svg" alt="Arrow right light" className="arrow-right hidden dark:block m-0 h-4 w-4" noZoom />
+  </p>
+
+  </Card>
+  <Card
+    title="Ask Fern conversations"
+    icon="regular messages"
+    href="/learn/ask-fern/getting-started/what-is-ask-fern"
+  >
+    Review AI chat conversation history.
+    <p className="text-(color:--grayscale-a11) font-bold mt-2 flex items-center gap-1">
+    Learn more
+
+    <img src="https://files.buildwithfern.com/fern.docs.buildwithfern.com/learn/2025-09-30T17:39:54.370Z/products/home/pages/images/arrow-right-black.svg" alt="Arrow right light" className="arrow-right dark:hidden m-0 h-4 w-4" noZoom />
+
+    <img src="https://files.buildwithfern.com/fern.docs.buildwithfern.com/learn/2025-09-30T17:39:54.370Z/products/home/pages/images/arrow-right-white.svg" alt="Arrow right light" className="arrow-right hidden dark:block m-0 h-4 w-4" noZoom />
+  </p>
+
+  </Card>
+  <Card
+    title="Fern Editor"
+    icon="regular pen-to-square"
+    href="/learn/docs/writing-content/fern-editor"
+  >
+    Create and manage Fern Editor sessions.
+    <p className="text-(color:--grayscale-a11) font-bold mt-2 flex items-center gap-1">
+    Learn more
+
+    <img src="https://files.buildwithfern.com/fern.docs.buildwithfern.com/learn/2025-09-30T17:39:54.370Z/products/home/pages/images/arrow-right-black.svg" alt="Arrow right light" className="arrow-right dark:hidden m-0 h-4 w-4" noZoom />
+
+    <img src="https://files.buildwithfern.com/fern.docs.buildwithfern.com/learn/2025-09-30T17:39:54.370Z/products/home/pages/images/arrow-right-white.svg" alt="Arrow right light" className="arrow-right hidden dark:block m-0 h-4 w-4" noZoom />
+  </p>
+
+  </Card>
+</CardGroup>
+

fern/products/dashboard/dashboard.yml

@@ -0,0 +1,42 @@
+---
+title: Member permissions
+description: Manage team member roles and access levels in your organization.
+---
+
+Use the Fern Dashboard to assign roles to your teammates.
+
+<Info title="Coming soon">
+  Member permissions are in active development. Reach out via Slack or [email protected] for more information.
+</Info>
+
+## Role types
+
+Member roles control what actions someone can take in your organization, such as managing settings, viewing analytics, and publishing to production. [**CLI access**](/learn/cli-api-reference/cli-reference/overview) determines who can publish SDKs and documentation sites to production (local development doesn't require it). 
+
+### Admin
+
+Admins have full administrative access to your Fern organization and full CLI access. They can:
+
+- Manage members, including adding and removing roles.
+- Publish SDKs and documentation sites to production.
+
+### Editor
+
+Editors can work with SDKs and documentation, but can't edit Fern organization settings or manage members. CLI access is enabled or disabled per Editor:
+
+- Editors **with** CLI access can publish SDKs and documentation sites to production.
+- Editors **without** CLI access can't publish to production.
+
+### Viewer
+
+Viewers have read-only access to the Dashboard and analytics. They can't edit organization settings, manage members, or publish to production.
+
+## Permissions by role
+
+| Permission | Admin | Editor | Viewer |
+|------------|-------|--------|--------|
+| Manage organization settings | ✅ | ❌ | ❌ |
+| Manage members | ✅ | ❌ | ❌ |
+| Publish to production | ✅ | Configure per Editor | ❌ |
+| Generate locally | ✅ | ✅ | ✅ |
+| View dashboard and analytics | ✅ | ✅ | ✅ |

fern/products/dashboard/pages/overview.mdx

@@ -0,0 +1,162 @@
+---
+title: Set up Single Sign-On (SSO)
+description: Let teammates sign in to Fern with your IdP (SAML or OIDC)
+---
+
+<Markdown src="/snippets/enterprise-plan.mdx" />
+
+Set up Single Sign-On (SSO) to sign in to Fern using the identity provider you already use. SSO setup requires coordination with Fern: you'll need configuration values from Fern (like callback URLs and entity IDs) to set up your IdP, and you'll share your IdP metadata back with Fern to complete the connection.
+
+Choose SAML or OIDC depending on your IdP, then follow the steps below for Okta, Google Workspace, or Microsoft Entra.
+
+<Note title="Using another provider?">
+  If you use another IdP, Fern will help you configure it. Reach out via Slack or [email protected] to get started. 
+</Note >
+
+## Okta
+
+<Tabs>
+  <Tab title="SAML">
+    <Steps>
+      <Step title="Receive configuration values from Fern">
+        Fern will send you the SSO URL and Audience URI through a secure channel (not Slack/email).
+      </Step>
+
+      <Step title="Create and configure application in Okta">
+        In **Applications**, create a new app integration using **SAML 2.0**. Configure with these values:
+
+        | Field | Value |
+        | ----- | ----- |
+        | Single sign-on URL | [value from Fern] |
+        | Audience URI | [value from Fern] |
+        | Name ID format | `EmailAddress` |
+
+        Then, add attribute statements:
+        | Name   | Value                                  |
+        | ------ | -------------------------------------- |
+        | `name` | `user.firstName + " " + user.lastName` |
+        | `email`| `user.email`                           |
+      </Step>
+
+      <Step title="Send Fern your IdP metadata">
+        From the **Sign-On** tab, copy the Metadata URL and X.509 certificate. Send them back to Fern. Fern will enable the connection and run a test login with you.
+      </Step>
+
+      <Step title="Disable IdP-initiated login">
+        In the **General** tab under **App visibility**, enable **Do not display application icon to users**. This prevents IdP-initiated login flows, which carry security risks.
+      </Step>
+
+      <Step title="Assign users">
+        Assign the people who should access Fern.
+      </Step>
+    </Steps>
+  </Tab>
+
+  <Tab title="OIDC">
+    <Steps>
+      <Step title="Receive configuration values from Fern">
+        Fern will send you the Redirect URI through a secure channel (not Slack/email).
+      </Step>
+
+      <Step title="Create and configure application in Okta">
+        In **Applications**, create a new **Web Application** using OIDC. Use Authorization Code grant and set the Redirect URI to the value Fern provided.
+      </Step>
+
+      <Step title="Send Fern your IdP credentials">
+        Share the Client ID, Client Secret, and your Okta domain (e.g., `<your-tenant>.okta.com`) back to Fern. Fern will enable the connection and run a test login with you.
+      </Step>
+
+      <Step title="Disable IdP-initiated login">
+        In the **General** tab under **App visibility**, enable **Do not display application icon to users**. This prevents IdP-initiated login flows, which carry security risks.
+      </Step>
+
+      <Step title="Assign users">
+        Assign the people who should access Fern.
+      </Step>
+    </Steps>
+  </Tab>
+</Tabs>
+
+## Google Workspace
+
+<Tabs>
+  <Tab title="SAML">
+    <Steps>
+      <Step title="Receive configuration values from Fern">
+        Fern will send you the ACS URL and Entity ID through a secure channel (not Slack/email).
+      </Step>
+
+      <Step title="Create and configure application in Google">
+        In **Web and mobile apps**, choose **Add app → Add custom SAML app**. On **Service provider details**, enter these values:
+
+        | Field | Value |
+        | ----- | ----- |
+        | ACS URL | [value from Fern] |
+        | Entity ID | [value from Fern] |
+        | Name ID format | `EMAIL` |
+        | Name ID | `Primary email` |
+
+        Then, add attribute statements:
+        | Google Directory Attribute | App Attribute |
+        | -------------------------- | ------------- |
+        | `First name`               | `firstName`   |
+        | `Last name`                | `lastName`    |
+      </Step>
+
+      <Step title="Send Fern your IdP metadata">
+        Copy the SSO URL, Entity ID, and X.509 certificate from Google. Send them to Fern. Fern will enable the connection and run a test login with you.
+      </Step>
+
+      <Step title="Assign users">
+        Assign the people who should access Fern.
+      </Step>
+    </Steps>
+  </Tab>
+</Tabs>
+
+## Microsoft Entra
+
+<Tabs>
+  <Tab title="SAML">
+    <Steps>
+      <Step title="Create an application">
+        Under **Enterprise applications**, select **New application → Create your own application → Non-gallery**.
+      </Step>
+
+      <Step title="Receive configuration values from Fern">
+        Fern will send you the Identifier (Entity ID) and Reply URL (ACS) through a secure channel.
+      </Step>
+
+      <Step title="Configure SAML">
+        In **Single Sign-On**, choose **SAML** and enter these values:
+
+        | Field | Value |
+        | ----- | ----- |
+        | Identifier (Entity ID) | [value from Fern] |
+        | Reply URL (ACS) | [value from Fern] |
+        | Name ID | `user.primaryauthoritativeemail` (email) |
+
+        Then, add attribute statements:
+
+        | Name        | Value            |
+        | ----------- | ---------------- |
+        | `firstName` | `user.givenname` |
+        | `lastName`  | `user.surname`   |
+      </Step>
+
+      <Step title="Send Fern your IdP metadata">
+        From **SAML Certificates**, copy the **App Federation Metadata URL**. Send it to Fern. Fern will enable the connection and run a test login with you.
+      </Step>
+
+      <Step title="Disable IdP-initiated login">
+        To prevent IdP-initiated login flows (which carry security risks), do not distribute the User access URL. 
+        
+        Optionally, create a Conditional Access policy to block sign-ins that don't originate from your service provider.
+      </Step>
+
+      <Step title="Assign users">
+        In **Users and groups**, add the people who should access Fern.
+      </Step>
+    </Steps>
+  </Tab>
+</Tabs>