Authentication & Authorization

Control and manage access to your workspace, APIs and documentation.

Introduction

Access management includes the control and authorization of users to access workspaces (the Traefik Hub dashboard), APIs, and API Portals. Integral access management components are JSON Web Tokens and API keys for APIs and Identity Providers (IdPs) as the source of truth for Users and Groups.

In Traefik Hub, an IdP serves as the foundation for user authentication, while API keys or JWTs play a key role in authorizing users to access APIs.

Traefik Hub support three main levels for access management, where the manager has the highest and the consumer the lowest permissions.

API Manager

The API Manager uses the Traefik Hub Dashboard to administrate workspaces, APIs, user and group management.

Can add, edit and remove cluster agents.
Can configure IdP.
Can invite/add/remove workspace member.
Can set member roles.

API User

Common actions of an API User:

Uses the Portal to browse APIs and read documentation.
Uses the Portal for API test calls (Portal playground) (API/JWT).
Uses the Portal to configure API keys.

Please refer to the IdP documentation to learn more about how to manage user authentication.

API Consumer

The API User or application accessing the API. Consumers are granted access to APIs via API Accesses.

Introduction​

API Manager​

API User​

API Consumer​

Introduction

API Manager

API User

API Consumer