Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CORE: API Key based authentication #226

Open
janaka opened this issue Feb 26, 2024 · 0 comments
Open

CORE: API Key based authentication #226

janaka opened this issue Feb 26, 2024 · 0 comments
Labels
enhancement New feature or request

Comments

@janaka
Copy link
Contributor

janaka commented Feb 26, 2024
edited
Loading

Current

The Web API only supports JWT token authentication based on user authentication. There's limited support for scenarios where a client app needs access the API without a user context (i.e. machine to machine). The main use case is for public access functionality such as bots/assistants/help docs Q&A.

Solution

We want to enable org admins to generate and mange API key.

  • Generate key
  • Give the key a name
  • choose expiry options ['1day', 7days, 30days, never expire]
  • delete a key (to revoke)
  • able to generate multiple keys
  • initially full scopes but in the future ability to limit scope.
@janaka janaka added the enhancement New feature or request label Feb 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@janaka