Authentication
Authentication is a necessary process to access and use APIs securely. The credentials supported by our APIs are detailed here.
Credentials
Basic Auth
To use Basic Auth Credentials, include the user’s credentials in the HTTPS request. This involves sending the Base64-encoded username and password in the authorization header of the HTTPS request.
Authorization: Basic <base64-encoded-credentials>
ApiKey
RequiredTo authenticate using ApiKey, include your API key in each HTTPS request. For this you must add it as a custom header in the HTTPS request.
apikey: <your-api-key>
Every proxy request to API Gateway will be subject to rate limit enforcement.
Through commands it instructs the API Gateway to impose a maximum of X requests per time window (second,minute,hour,day,month,year) per client IP address for all routes and services. The policy configuration determines where Kong Gateway retrieves and increments limits
OAuth 2.0
Is a protocol that allows a user to grant limited access to their resources on one site, to another site, without having to expose their credentials. This protocol it’s widely used in the realm of authentication and authorization in web and mobile applications.
OAuth 2.0 relies on token for authorization and authentication. The token is generated by the authorization server and is sent to the client.
On This Page