Reading time: 2 min

Authorization token

HTTP

#!/bin/bash

curl -H "Authorization: Bearer <encrypted_jwt_token>" "http://localhost:7512/..."

Others protocols

{
  // Optional: Unique request Identifier
  "requestId": "<unique request identifier>",
  "controller": "<controller>",
  "action": "<action>",
  "collection": "<collection>",

  // Request headers:
  "jwt": "<encrypted_jwt_token>"

  "body": {..}
}

Kuzzle uses JSON Web Tokens send within request headers to authenticate users. The token himself is generated by the Auth controller login action and must be included with each request.