Description
A JWT token is a JSON Web Token used for authentication and authorization in the Nashpush. There are currently two types of JWT tokens:
- User JWT: refference token for user authentication. This token is used to identify the user and is passed to the SSO service for validation.
- Service JWT: full JWT token containing authorization user data. This token is received by all services that require user authorization.
User JWT
Returned by the SSO service after a successful user authentication. It is used to identify the user. Token is passed to gateway for a further validation and authorization. This token is not being included in the request to other services, once routing is done by the gateway. Instead, the gateway will pass a service JWT, which is a full JWT token containing user data and is used for authorization in other services.
Service JWT
A full JWT token containing user data and is used for authorization in other services. This token is passed to all services that require user authorization. It contains all set of permissions that user has, including billing information and quota limits. The service JWT is generated by the SSO service and is passed to the gateway after a successful user authentication.