Authentication

Overview

The GiftHub API includes an Authentication service that utilizes JSON Web Tokens (JWT) for secure authentication and authorization. When making requests to protected endpoints, clients are required to include an Authorization header with the Bearer scheme, followed by a valid JWT token.

Upon successful authentication, the Auth service generates an access token that serves as proof of the client's identity and permissions. This access token has a shorter lifespan and typically lasts for 1 hours. It is used to authenticate subsequent requests to protected resources.

By implementing JWT-based authentication, using the Bearer scheme in the Authorization header , the GiftHub API provides a secure and user-friendly authentication mechanism. This approach ensures that clients can access protected resources for a specified duration, while also allowing for automatic token renewal to maintain a smooth user experience.