Access Using JWT

From DreamFactory
Jump to: navigation, search
DreamFactoryTutorialsAccess Using JWT

DreamFactory 2.0 APIs can be consumed with just a JWT (token) from an authenticated session. JWT from an admin user's session will allow full access to the system. Non-admin users cannot consume any protected APIs using just a JWT. He/she will also require an API Key and their access will be limited by the role assigned to them for the application of the API key being used.

API Endpoints

{Method} https://{url}/api/v2/{service}/{resource}?session_token={JWT}

-- OR --

{Method} https://{url}/api/v2/{service}/{resource}

Request header

...
X-DreamFactory-Session-Token: {JWT}
...

Example - Using URL parameter

GET https://foo.com/api/v2/system/user?session_token=abc.123.efg
  • Service: system
  • Resource: user
  • Session Token: abc.123.efg
  • Method: GET
  • Request URL:

Example - Using request header

...
X-DreamFactory-Session-Token: abc.123.efg
...

Request URL:

GET https://foo.com/api/v2/system/user
  • Service: system
  • Resource: user
  • Session Token: abc.123.efg
  • Method: GET
  • Request Header: