Skip Navigation


During the step which a client system requests access prior to using
resources, there is an independent web API that will handle the authentication process and grant access to the client system. A token based authentication approach is being taken as a means of data transportation between the parties.
has adopted JWT (RFC 7519) as the token format for its simplicity as well as its capabilities for digital signature.
The following actors exist in the authentication workflow:
  • Authentication Token: Created and signed by the client system to perform an authentication request, it is in this request where the application is indicated.
  • Authentication Endpoint: Part of the
    Auth web API which will handle the authentication requests coming from client systems, there will be a particular endpoint to handle JWT tokens.
  • Access Token: If authentication is successful and the client system is granted access to the requested application, a token representing this identity and some key attributes will be returned as a JWT token.