Authentication
RiskQuest Navigator uses JSON Web Tokens (JWTs) to authenticate requests. The JWT contains an access and refresh string that have an expiration date of 1 and 7 days, respectively. The expiration date noted in seconds is also returned.
To retrieve a JWT, a username and password needs to be provided. With the access token further requests can be authorized. If the access token has expired, the refresh token can be sent to get a new access token.
The API uses Bearer Authentication. The access token must be sent in the header as a bearer token:
1 | |