Go Rest

Auth API

The auth api is the system used to get information about the user that is sending requests to a system that make use of the go rest library. Currently it supports two different authentication methods.

JWT Authentication

Basic OpenID Connect authentication is done via JWT tokens. The user needs to authenticate against the OpenID Connect Provider of the tenant and then pass the JWT token in the Authorization header of the request.

Virtual User Authentication

Vyndara authorization server authentication with virtual users is done via a JWT token that is passed in the Authorization header of the request. The JWT token is generated by the authorization server with the request flow explained in the Authorization System documentation.

For this way of JWT authentication the system integrates a adapter that can be disabled. Only if enabled it then checks if the used JWT header in the request is a virtual user and uses the authorization server to verify the virtual user.

For that the system needs to have the VYNDARA_AUTHORIZATION_SERVER_URL environment variable set to the URL of the authorization server which is fetched from the vault storage.

Auth API​

JWT Authentication​

Virtual User Authentication​

Auth API

JWT Authentication

Virtual User Authentication