$ 83.95
| Required Apps |
•
Discuss (mail)
|
| Community Apps Dependencies |
api_framework_base
ekika_utils ekika_widgets |
| Technical Name |
api_auth_jwt
|
| License | OPL-1 |
| Also available in version | 18.0 17.0 |
Introduction
Modernize your API security with the Odoo API JWT Authentication module. This essential tool integrates a robust JSON Web Token (JWT) based authentication system into your Odoo environment, providing a stateless and highly secure method for managing API access. Ideal for headless applications, mobile apps, and third-party integrations, this module allows you to issue, validate, and manage JWTs for secure, token-based communication. Say goodbye to traditional session-based authentication and embrace a more scalable, efficient, and secure way to protect your Odoo API.
Key Features
Stateless JWT Authentication: Implements a secure, stateless authentication mechanism using JSON Web Tokens.
Token Management: Provides endpoints for generating, refreshing, and revoking JWT and refresh tokens.
Secure Endpoints: Protect your API resources by requiring a valid JWT in the authorization header of each request.
Customizable JWT Validators: Configure how JWTs are validated, including audience, issuer, and signature algorithms.
User and Partner Strategies: Define strategies for identifying the user and partner associated with a valid token.
Cookie Mode: Optionally use HTTP-only cookies for storing JWTs, simplifying front-end application development.
Benefits
Enhanced Security: A stateless authentication model reduces the risk of session hijacking and provides a more secure way to manage API access.
Improved Scalability: Stateless tokens are ideal for distributed systems and microservices architectures, allowing for better scalability.
Flexible and Modern: JWT is a modern and widely adopted standard for API authentication, ensuring compatibility with a wide range of applications and services.
Decoupled Architecture: A perfect solution for headless and decoupled architectures, such as single-page applications (SPAs) and mobile apps.
Greater Control: Fine-grained control over token validation and user identification provides a more secure and flexible authentication system.
Compatibility & Technical Details
Required Modules: Discuss (mail)
License: OPL-1
Technical Name: api_auth_jwt
Installation: To install this module, add the module folder to your Odoo addons path. After installation, you will need to configure a JWT validator and update your controller routes to use the auth="jwt_{validator-name}" attribute.
Odoo Proprietary License v1.0 This software and associated files (the "Software") may only be used (executed, modified, executed after modifications) if you have purchased a valid license from the authors, typically via Odoo Apps, or if you have received a written agreement from the authors of the Software (see the COPYRIGHT file). You may develop Odoo modules that use the Software as a library (typically by depending on it, importing it and using its resources), but without copying any source code or material from the Software. You may distribute those modules under the license of your choice, provided that this license is compatible with the terms of the Odoo Proprietary License (For example: LGPL, MIT, or proprietary licenses similar to this one). It is forbidden to publish, distribute, sublicense, or sell copies of the Software or modified copies of the Software. The above copyright notice and this permission notice must be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.