JWT Authentication

Introduction

Alumio has supported JSON Web Token (JWT) authentication since version 3.45.0. By using this authentication method, it will result every call involving this HTTP authentication will have a bearer token (Authorization: Bearer JWT_TOKEN_HERE) within the HTTP request headers.

Please refer to JWT website for further information about JWT authentication.

How to configure JWT authentication

In order to use the JWT authentication, follow the below steps.

Note: You should fill in the fields according to the documentation of the system you are trying to connect to.

  1. Create a new HTTP authentication.
  2. Choose JWT authentication.
  3. Choose the encryption method. The available encryption methods are:
    a. HS256, which is HMAC with SHA256
    b. RS256 (RSA with key)
    c. RS256 (Passphrase)
    d. EdSDA (Ed25519)
  4. If you choose HS256, RS256 (Passphrase) or EdSDA (ED25519), fill in the secret in the JWT encryption key.
  5. If you choose RS256 (RSA with key), you will be asked to fill in the Client certificate or the Private Key
  6. Fill in the expire time in seconds.
  7. Fill in the JWT Headers, and leave out the type and alg headers, as those will be set automatically by Alumio.
  8. Fill in the required JWT Payload.
  9. Save the HTTP authentication.
  10. Use the newly created HTTP authentication in any HTTP clients or any HTTP calls (HTTP subscribers/transformers/publishers) that require the JWT authentication.