search

jitsi / handbook

The Jitsi Handbook
https://jitsi.github.io/handbook/
Apache License 2.0
187 stars 465 forks source link

Token based authentication? #242

Open ulab opened 3 years ago

ulab commented 3 years ago

In secure-domain I am told that

When using token based authentication, the type must use JWT as the scheme instead:

At least to me it is unclear what "token based authentication" is and if I'm using it at that point.

Perhaps it'll help to explain that in more detail or link somewhere?

saghul commented 3 years ago

Token based auth is a type of auth that uses JSON Web Tokens (JWTs) for auth. Unless you configured it, which you'd only do if you explicitly want to use that mode, you are not using it.

ulab commented 3 years ago

This issue was more about having someone add that explanation and what that mode is for to the handbook ;)

saghul commented 3 years ago

Well, it's a bit of a weird thing for us to describe what it is, because unless you need it and thus already know what it is, there is nothing in it for you...

ulab commented 3 years ago

Just because I need it doesn't mean I know what it is.

Perhaps I am looking for a solution to a problem, but can't find the mechanism, because nobody explained it.

saghul commented 3 years ago

I'm sure there are resources out there we could link to, since this is a common practice. I'll try to add some links.