Authentication and authorization

Open Product uses the described authentication and authorization mechanism based on API tokens. It does not implement its own mechanism but uses TokenAuthentication provided by Django REST Framework and OIDCAuthentication provided by mozilla-django-oidc in combination with mozilla-django-oidc-db.

Token

To connect to Open Product, you have received a token key which should be included in your request’s HTTP headers:

Authorization: Token 9944b09199c62bcf9418ad846dd0e4bbdfc6ee4b

OpenID connect

To connect to Open Product, you have received a jwt token which should be included in your request’s HTTP headers:

Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cC.....