Authentication
Last updated
Last updated
Authentication in QueryDeck ensures secure access to your API by using JWT (JSON Web Token) authentication. This system verifies user identity and enforces permissions based on user roles and session information.
First set up a demo app (or with any databse of your choice), then change the menthod to select.
Now click on the security icon (shown below) present on the left toolbar
Now we get this page, which allows us to set up CORS, Authentication and Authorization
Click on the Authenticaiton tab on the top right task bar
Now click on the button to set up Authentication
Now we get a pop up (as shown below)
Algorithm (Dropdown) This field specifies the cryptographic algorithm used for signing and verifying JWTs.
Example Use Cases: Use HS256 for shared secret keys. Use RS256 for private/public key pairs for added security.
The key used to sign and verify JWTs.
For HS256: Provide a shared secret string.
Where to Get the Key:
HS256 Secret Key: Generate a secure random string. You can use tools like OpenSSL or online generators or use your own desired key
Example:
This key specifies the JWT claim used to identify the user session, this should be set to describe the chosen user session column and field.
Purpose: Maps the claim in the JWT to a user session.
Example Value:
Role Session Key(text)
This will be the input field in the jwt, where you will assign the value to validate authorization. Choose an appropriate text value.
Save your chosen options
Now our auth is set up and ready to use after Authorization
