authentik/website/api/authentication.md at 19e558e916c649b1b5934cdf3a09dada8561ce23

mirror of https://github.com/goauthentik/authentik synced 2026-04-25 17:15:26 +02:00

Files

Teffen Ellis 19e558e916 website: Prep for workspaces. Clean up shared deps. (#15602 )

website: Prepare NPM Workspaces.

2025-07-17 10:06:05 -04:00

623 B

Raw Blame History

title, sidebar_position

title	sidebar_position
Authentication	1

For any of the token-based methods, set the Authorization header to Bearer <token>.

Session

When authenticating with a flow, you'll get an authenticated Session cookie, that can be used for authentication. Keep in mind that in this context, a CSRF header is also required.

API Token

Users can create tokens to authenticate as any user with a static key, which can optionally be expiring and auto-rotate.

JWT Token

OAuth2 clients can request the scope goauthentik.io/api, which allows their OAuth Access token to be used to authenticate to the API.

623 B Raw Blame History

Session

API Token

JWT Token

623 B

Raw Blame History