With NGINX Plus as an API gateway, you can use JSON Web Tokens (JWTs) to control access to your APIs. We explain how to configure the gateway for JWT-based authentication, issue JWTs to API clients, rate limit, log claims from the JWT, and revoke JWTs.
In this installment of our "Ask NGINX" series, we discuss UDP health checks, having NGINX Plus verify JWTs generated with Microsoft Active Directory, performing client certificate-based authentication for IIS servers, and obtaining metrics for website visits or page views.
NGINX and NGINX Plus can act as an OAuth 2.0 Relying Party, sending access tokens to the Idenity Provider for validation and only proxying requests that pass the validation process.
In Microsoft Azure, you can use JWTs with NGINX Plus to handle authentication against Active Directory outside your app's code.
NGINX Plus uses the information in JSON Web Tokens (JWTs) to authenticate clients and route them based on the JWT content.
NGINX Plus R14 is now available with enhanced JWT authentication and a downloadable preview of upcoming cluster support.