- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Accept API Key & JWT Auth on the Same Route | Zuplo API Gateway
Most APIs need to authenticate two kinds of clients: real users hitting a dashboard, and services calling programmatically. The users carry JWTs from your identity provider. The services carry API keys.
In this video I show you how to handle both on the same Zuplo route, using only built-in policies and a three-line enforcement check. No custom auth code, no shared secrets, no compromise on security.
00:00 The dual-auth problem
00:40 Demo: one route, two credential types
01:55 Setting up the policies
02:50 Combining them with a composite policy
03:25 Allowing both auth types through the chain
04:35 Configuring the JWT policy with Auth0
05:15 Adding the composite to the route
05:50 Hardening with a require-auth check
06:55 Wiring up the custom code policy
07:35 Testing both credential types
08:30 Wrap up
Resources:
- Multi-auth pattern docs: https://zuplo.com/docs/articles/multiple-auth-policies
- API Key Authentication policy: https://zuplo.com/docs/policies/api-key-inbound
- OpenID JWT Auth policy: https://zuplo.com/docs/policies/open-id-jwt-auth-inbound
Try Zuplo free: https://zuplo.link/check-us-out
Видео Accept API Key & JWT Auth on the Same Route | Zuplo API Gateway канала Zuplo
In this video I show you how to handle both on the same Zuplo route, using only built-in policies and a three-line enforcement check. No custom auth code, no shared secrets, no compromise on security.
00:00 The dual-auth problem
00:40 Demo: one route, two credential types
01:55 Setting up the policies
02:50 Combining them with a composite policy
03:25 Allowing both auth types through the chain
04:35 Configuring the JWT policy with Auth0
05:15 Adding the composite to the route
05:50 Hardening with a require-auth check
06:55 Wiring up the custom code policy
07:35 Testing both credential types
08:30 Wrap up
Resources:
- Multi-auth pattern docs: https://zuplo.com/docs/articles/multiple-auth-policies
- API Key Authentication policy: https://zuplo.com/docs/policies/api-key-inbound
- OpenID JWT Auth policy: https://zuplo.com/docs/policies/open-id-jwt-auth-inbound
Try Zuplo free: https://zuplo.link/check-us-out
Видео Accept API Key & JWT Auth on the Same Route | Zuplo API Gateway канала Zuplo
Комментарии отсутствуют
Информация о видео
7 мая 2026 г. 19:00:16
00:08:46
Другие видео канала
Make APIs discoverable by AI | Emmanuel Paraskakis | API World #ai #api #shorts
2025 will be a big year for OpenAPI | Erik Wilde | API Conference Berlin 2024 #apitech #openapi
Are webhooks easier to use now? | Tom Hacohen | Kubecon North America #webhooks
Day 6 - Basic Authentication and Environment Variables
Building a Customer API - Arsham Faghihi of OnCall Health
Intro to Phantom API Tokens with Curity
AI can use UI so why use APIs? | Zdenek Nemec | API Days Paris 2024 #ai #agents
Best. Rate Limiter. Ever. Now with Complex Rate Limiting.
API Orchestration in 1 minute: Combine many API calls together! #api #orchestration
Explaining n+1 in GraphQL | Adam Malone | API World 2024
Sun sued Microsoft!
OpenAPI Overlays? You need to watch this!
Go API-first with Firebase Firestore
Monetize Your APIs with Zuplo | Private Beta Launch
API Orchestration: How to combine API calls
Auto-Generate API Keys for New Users on Signup
Day 2: Programmable to the max - making an API with Zuplo
What is GraphQL Federation? | Michael Watson | Kubecon North America #graphql #federation
Security concerns for Model Context Protocol #mcp #modelcontextprotocol #apis #security #shorts
Zuplo API Gateway: Rate Limiting, Auth, RBAC & Global Deploys in 10 Mins
How to quota an API in minutes with Zuplo API Management
