Authentication & Authorization
Control and manage access to your workspace, APIs and documentation.
Introduction
Access management encompasses the control and authorization of users to access workspaces (the Traefik Hub dashboard), APIs and API Portals.
Integral components in this realm are JSON Web Tokens and API keys
for APIs and Identity Providers (IdPs) as the source of truth for Users and Groups.
In Traefik Hub, an IdP serves as the foundation for user authentication, while API keys or JWTs play a key role in authorizing users to access APIs.
Traefik Hub support three main levels for access management, where the manager has the highest and the consumer the lowest permissions.
API Manager
The API Manager uses the Traefik Hub Dashboard to administrate workspaces, APIs, user and group management.
- Can add, edit and remove cluster agents.
- Can configure IdP.
- Can invite/add/remove workspace member.
- Can set member roles.
API User
Common actions of an API User:
- Uses the Portal to browse APIs and read documentation.
- Uses the Portal for API test calls (Portal playground) (API/JWT).
- Uses the Portal to configure API keys.
Please refer to the IdP documentation to learn more about how to manage user authentication.
API Consumer
The API User or application accessing the API. Consumers are granted access to APIs and API Collections via API Accesses.