Overview

• Introduction
• How it works
  • Token types

Introduction

APIs are authentcated using state-less authentication approch, it uses API-key based one where on every request comming to OTAS the consumer of the API needs to send an token along with the request to get the access to any resource available.

How it works

For any user of the system a token can be generated. all tokens are saved in the otas_api_clients where every token can be associted with a client and has a type

Token types

• Saide key Saide Keys are type of token used to authenticate requests comming from Saide and only be used to there API endpoints
• License Key Licenes Keys are used for OTAS-based systems as a license key. go to Licenesing for more information about licensing
• Plugin Key Plugin keys are used to authenticating API requests comming to OTAS resources from a thirdparty application.