rest_api_authentication
The Drupal API Authentication module prevents unauthorized access to your Drupal site. This helps to secure API endpoints from unauthorized access.
Our module supports key API authentication methods such as Basic Authentication, API Key Authentication, JWT Authentication, and more. Additionally, a REST API defines a set of functions in which developers can perform requests such as GET, POST, PUT, PATCH, DELETE, and receive responses via the HTTP protocol.
Setup guides Unique case-studies
Drupal API Authentication Methods:
Drupal REST & API Authentication module supports the following authentication methods:
1) Basic Authentication: Users can effortlessly authenticate themselves using their username and password using the basic authentication technique.
2) API Key Authentication: This is a method where the users are authenticated using a unique API key on every API request.
3) OAuth 2.0 Authentication: One of the secured authentication methods, where the OAuth 2.0 protocol is used to generate an access token. This token authenticates access to your Drupal site API.
4) JWT Authentication: This method authenticates users with an existing external JSON Web Token (JWT) from a provider, or with one obtained through our module. Just add the token in the API request header to authenticate the users
5) Third-Party Provider Authentication: Restrict access to your Drupal REST API using third-party identity providers such as Okta, Google, or Microsoft Entra ID etc. This technique allows you to configure the Drupal API authentication module with the identity provider and authenticate all the API requests using the access token from the identity provider.
Prominent Features of REST & JSON API are:
- Custom Certificate Generation: The module allows you to generate a custom certificate or use your own certificate.
- Supports JSON and REST APIs.
- Supports Restriction of Custom APIs.
- API Key Authentication
- Basic Authentication
- JWT-Based Authentication
- OAuth 2.0 or Access Token-based Authentication
- Third-party provider (external identity provider) based authentication.
- Generate separate API Keys for every user.
- Custom Header
- Custom Token Expiry
- Custom API Restrictions
- IP Address Based Restriction
- Role Based Restriction
and much more...
This module is developed by miniOrange. Some of the features may require a valid paid license.
Need any help?
Reach out to us at [email protected] to resolve queries or to schedule a demo. You can also connect with us on the Drupal Slack channel.