API Portal Guide

API Portal Guide

Invoke a managed API with JSON Web Token authentication

Invoke a managed API with JSON Web Token authentication

To invoke a managed API that uses JSON Web Token (JWT) authentication, you generate a token and pass the token as a bearer token in the HTTP Authorization header.
API Portal uses the Coordinated Universal Time (UTC) time zone for the JWT token expiration and uses the current time on your computer as the baseline time for the token expiration. The token expires on the expiration date you configure and a minute earlier than the time at which you generated the token. After a token expires you have to generate a new token.
For example, if you generate the token on January 10 at 2:30 p.m. and set the expiration date as January 11, the token expires on January 11 at 2:29 p.m. If you set the expiration date as January 15, the token expires on January 15 at 2:29 p.m.
You can generate a token for a single managed API, for up to 15 APIs simultaneously, and for a managed API group. When you generate a token for a group, you can use the token to invoke the managed APIs in the group that use JWT authentication.
The following image shows an API invoked through Postman with a Bearer Token authorization type and the token:

0 COMMENTS

We’d like to hear from you!