Page History

...

Name

Description

Screens (Click to view)

API Key

A unique identifier used to authenticate to an API document.

Figure 1: Manage API Key in a userview

Figure 2: Manage API Key - Log view

Figure 3: Manage API Key - New/Edit access

Authentication Method

Methods available:

API Key
API Key & Token
Basic access authentication

API Secret (API Key & Token method)

A secret string used for authentication.

Token Pattern (API Key & Token method)

Token Pattern consists of hash algorithm and variables.

Format:

HASH(

MD5,

PATTERN)

Supported hash algorithm:

MD5
SHA-1

,

SHA-256

and

SHA-512

) and variables (

Supported variables:

{api_key}

,

{api_secret}

,

{date_pattern} (current date time)

.

Example

Examples:

SHA-256({api_key}::{api_secret}::{yyyy-MM-dd HH:mm})
MD5({api_secret})

Note
Token pattern must contain at least one and only one hash algorithm.

Permission Plugin (Basic access authentication method)

Select a permission plugin and configure its properties.

Find list of available permission plugins here.

Custom Authenticator Plugin

Select a custom authenticator plugin and configure its properties.

This option is shown only if a plugin of that type exist in the system.

Learn more about API Authenticator plugin here.

Custom Authentication Method

Methods available:

Add as additional authentication method
Replace the default authentication method

Note
API Key is always required regardless of method selected here.

Domain Whitelist

Domain whitelist to allow API calls.

Info

title	Example

"localhost;www.joget.org;dev.joget.org”, or "*" to allow from everywhere.

IP Address Whitelist

IP address whitelist to allow API calls.

Info

title	Example

"127.0.0.1;192.168.0.1”, or "*" to allow from everywhere.

Remark

Any remark or description for the created API access.

...

Space shortcuts

Page tree

Versions Compared

Old Version 28

New Version 29

Key