Access Using JWT

Revision as of 21:04, 30 June 2016

For admin users only, DreamFactory APIs can be consumed with just a JWT (token) from an authenticated session. JWT from an admin user's session will allow full access to the system. Non-admin users cannot consume any protected APIs using just a JWT. They will also require an API key that allows the system to determine is they should have access to the requested resource.

Request:

GET https://foo.com/api/v2/system/user?session_token=abc.123.efg

HTTP method: GET
URL: https://foo.com/api/v2
Service: system
Resource: user
Session token: abc.123.efg

Note: Session token can also be supplied using the X-DreamFactory-Session-Token request header.

Revision as of 20:52, 30 June 2016 (view source) Toddappleton (Talk \| contribs) ← Older edit		Revision as of 21:04, 30 June 2016 (view source) Toddappleton (Talk \| contribs) Newer edit →
Line 1:		Line 1:
−	For admin users only, DreamFactory APIs can be consumed with just a JWT (token) from an authenticated session. JWT from an admin user's session will allow full access to the system. Non-admin users cannot consume any protected APIs using just a JWT. They will also require an API key.	+	For admin users only, DreamFactory APIs can be consumed with just a JWT (token) from an authenticated session. JWT from an admin user's session will allow full access to the system. Non-admin users cannot consume any protected APIs using just a JWT. They will also require an API key that allows the system to determine is they should have access to the requested resource.

	Request:		Request:

Access Using JWT

Revision as of 21:04, 30 June 2016

Navigation menu

Personal tools

Views

More

Search

Faux heading

Prologue

Installation, Configuration, and Updates

Features

Tutorials

Remote and Scripted Service Examples

Videos

Architecture