Drupal is a registered trademark of Dries Buytaert
cms 2.1.3 Update released for Drupal core (2.1.3)! drupal 10.5.11 Update released for Drupal core (10.5.11)! drupal 11.3.11 Update released for Drupal core (11.3.11)! drupal 11.2.13 Update released for Drupal core (11.2.13)! drupal 10.6.10 Update released for Drupal core (10.6.10)! cms 2.1.2 Update released for Drupal core (2.1.2)! drupal 11.1.10 Update released for Drupal core (11.1.10)! drupal 10.5.10 Update released for Drupal core (10.5.10)! drupal 10.4.10 Update released for Drupal core (10.4.10)! drupal 11.2.12 Update released for Drupal core (11.2.12)! drupal 11.3.10 Update released for Drupal core (11.3.10)! drupal 10.6.9 Update released for Drupal core (10.6.9)! drupal 10.6.8 Update released for Drupal core (10.6.8)! drupal 11.3.9 Update released for Drupal core (11.3.9)! drupal 11.3.8 Update released for Drupal core (11.3.8)! drupal 11.3.7 Update released for Drupal core (11.3.7)! drupal 11.2.11 Update released for Drupal core (11.2.11)! drupal 10.6.7 Update released for Drupal core (10.6.7)! drupal 10.5.9 Update released for Drupal core (10.5.9)! cms 2.1.1 Update released for Drupal core (2.1.1)!
← All modules

rest_api_authentication

1,342 sites Security covered
View on drupal.org

The Drupal API Authentication module prevents unauthorized access to your Drupal site. This helps to secure API endpoints from unauthorized access.

Our module supports key API authentication methods such as Basic Authentication, API Key Authentication, JWT Authentication, and more. Additionally, a REST API defines a set of functions in which developers can perform requests such as GET, POST, PUT, PATCH, DELETE, and receive responses via the HTTP protocol.

Setup guides Unique case-studies

Drupal API Authentication Methods:

Drupal REST & API Authentication module supports the following authentication methods:

1) Basic Authentication: Users can effortlessly authenticate themselves using their username and password using the basic authentication technique.

2) API Key Authentication: This is a method where the users are authenticated using a unique API key on every API request.

3) OAuth 2.0 Authentication: One of the secured authentication methods, where the OAuth 2.0 protocol is used to generate an access token. This token authenticates access to your Drupal site API.

4) JWT Authentication: This method authenticates users with an existing external JSON Web Token (JWT) from a provider, or with one obtained through our module. Just add the token in the API request header to authenticate the users

5) Third-Party Provider Authentication: Restrict access to your Drupal REST API using third-party identity providers such as Okta, Google, or Microsoft Entra ID etc. This technique allows you to configure the Drupal API authentication module with the identity provider and authenticate all the API requests using the access token from the identity provider.

Prominent Features of REST & JSON API are:

  • Custom Certificate Generation: The module allows you to generate a custom certificate or use your own certificate.
  • Supports JSON and REST APIs.
  • Supports Restriction of Custom APIs.
  • API Key Authentication
  • Basic Authentication
  • JWT-Based Authentication
  • OAuth 2.0 or Access Token-based Authentication
  • Third-party provider (external identity provider) based authentication.
  • Generate separate API Keys for every user.
  • Custom Header
  • Custom Token Expiry
  • Custom API Restrictions
  • IP Address Based Restriction
  • Role Based Restriction

    • and much more...

This module is developed by miniOrange. Some of the features may require a valid paid license.

Need any help?

Reach out to us at [email protected] to resolve queries or to schedule a demo. You can also connect with us on the Drupal Slack channel.

 Contact Us Join Our Slack Channel

Activity

Total releases
5
First release
Feb 2025
Latest release
1 month ago
Release cadence
111 days
Stability
100% stable

Release Timeline

Releases

Version Type Release date
3.1.0 Stable Apr 23, 2026
3.0.0 Stable Jan 26, 2026
2.1.0 Stable Sep 8, 2025
2.0.19 Stable Jun 16, 2025
2.0.18 Stable Feb 3, 2025