JWT Auth
JWT Auth is a good choice for flexible and scalable authentication that supports token-based authentication, user information sharing, and features such as token expiration, revocation, and refresh.
When to use the JWT Auth
- Use JWT Auth if you need a flexible and scalable authentication system that supports token-based authentication.
- JWT Auth allows you to pass user information between different services or systems.
- If you have an existing infrastructure that supports JWT authentication, JWT Auth might be the better choice.
- JWT Auth supports token expiration, revocation, and refresh, so it's a good choice if you need those features.
Getting Started with JWT Auth
To get started with JWT Auth, follow these steps:
- Set up your client credentials
Navigate to the Developer > Mini-app (opens in a new tab) menu of the ABC Loyalty 3.0 Dashboard and select "JWT Auth" as your authentication method.
Then, set your client id, KID, and JWK URL. This will generate a secret that you'll need to use to sign your tokens.
-
Obtain your Access URL Copy the Access URL from the Mini-app Settings page. You'll need to use this URL to open your mini-app.
-
Configure your application Configure your application to use the Access URL you obtained in the previous step. This may involve updating a configuration file, environment variable, or other settings.
-
Pass your JWT token in the Authorization header When you try to open the Access URL in your application, pass your JWT token in the Authorization header. The token should be signed using the secret generated in step 1. This will authenticate your request and allow you to access the mini-app.
That's it! You're now ready to use JWT Auth to authenticate requests to your mini-app.
Additional Resources
To access URLs for staging or production environments, please refer to the API Overview.