aiWARE uses token-based authentication for access to the system and resources. A token identifies the client to the aiWARE OS and describes the rights and privileges the client has over resources. The type of token-based authentication depends on if you are accessing an application, engine, or API. Using tokens means that credentials don't have to be reentered every time a resource is accessed until the token expires.
To access specific aiWARE resources, use these types of authentication tokens:
- Create a user session token: Use this type of authentication when you provide credentials to log in to aiWARE via the UI or the AI Data API. User session tokens expire and do not limit the scope to specific resources.
- Create an API token: aiWARE APIs use API tokens to provide access to organization-level resources and to make API requests by passing the token in an Authorization header. These tokens are long lived and can only be generated by a user with organization administrator permissions.
- Create a JSON Web Token (JWT): Engines and applications in aiWARE use JSON Web Tokens for authentication to provide limited service access to resources, such as those needed by an engine for processing tasks.
- Create an OAuth token (application token): Third-party applications use application tokens for authentication and authorization of users. The OAuth2 protocol provides single sign-on (SSO) and generates a token for the user to access data without revealing the credentials.
In addition, third-party authentication can be set up to handle authentication for aiWARE:
