Authentication overview

Placeholder — PR-Docs2 fills this in.