https://community.qlik.com/t5/Suggest-an-Idea/Qlik-Sense-Add-JWT-authentication-as-an-alternative-to-ticket/idi-p/1783597 <P><U>Advantages:</U>&nbsp;This doesn't require an extra port (4243) to be open on the Qlik Sense side, it also doesn't require TLS mutual authentication (client certificate authentication)</P><P><U>Drawback:</U>&nbsp;Customer needs to set up an extra virtual proxy for JWT authentication</P><P>When setting up this type of authentication in QDC, the customer will provide the private key of the certificate put inside the virtual proxy settings.</P><P>QDC will need some kind of code to generate a JWT token (libraries for different programming languages available that will be sent in the "Authorization" header to initiate the session, once Qlik Sense receives the token, it will create a session for the user (same way as with ticket authentication), from this point QDC should re-use the session cookie to maintain the same session at the time it does the API calls</P><P>Please note that there is a 5 sessions limit in a 5 minute interval on Qlik Sense license that are not core-based (QAP and core-based QAP) (which also applies to ticket authentication), I am not familiar if QDC has a mechanism to workaround this in case it needs to do different API calls in shorter sessions.</P> Wed, 17 Feb 2021 21:04:59 GMT MartijnOlivier 2021-02-17T21:04:59Z https://community.qlik.com/t5/Suggest-an-Idea/Qlik-Sense-Add-JWT-authentication-as-an-alternative-to-ticket/idi-p/1783597 <P><U>Advantages:</U>&nbsp;This doesn't require an extra port (4243) to be open on the Qlik Sense side, it also doesn't require TLS mutual authentication (client certificate authentication)</P><P><U>Drawback:</U>&nbsp;Customer needs to set up an extra virtual proxy for JWT authentication</P><P>When setting up this type of authentication in QDC, the customer will provide the private key of the certificate put inside the virtual proxy settings.</P><P>QDC will need some kind of code to generate a JWT token (libraries for different programming languages available that will be sent in the "Authorization" header to initiate the session, once Qlik Sense receives the token, it will create a session for the user (same way as with ticket authentication), from this point QDC should re-use the session cookie to maintain the same session at the time it does the API calls</P><P>Please note that there is a 5 sessions limit in a 5 minute interval on Qlik Sense license that are not core-based (QAP and core-based QAP) (which also applies to ticket authentication), I am not familiar if QDC has a mechanism to workaround this in case it needs to do different API calls in shorter sessions.</P> Wed, 17 Feb 2021 21:04:59 GMT https://community.qlik.com/t5/Suggest-an-Idea/Qlik-Sense-Add-JWT-authentication-as-an-alternative-to-ticket/idi-p/1783597 MartijnOlivier 2021-02-17T21:04:59Z https://community.qlik.com/t5/Suggest-an-Idea/Qlik-Sense-Add-JWT-authentication-as-an-alternative-to-ticket/idc-p/2101079#M14324 <P>From now on, please track this idea from the Ideation portal.&nbsp;</P><P><STRONG><A title="Link to new idea" href="https://ideation.qlik.com/app/#/case/281413" target="_blank" rel="noopener">Link to new idea</A></STRONG></P><P>Meghann</P><P data-unlink="true"><EM>NOTE: Upon clicking this link 2 tabs may open - please feel free to close the one with a login page. If you <STRONG>only</STRONG> see 1 tab with the login page, please try clicking this link first: <STRONG><A title="Authenticate me!" href="#" target="_blank" rel="noopener">Authenticate me!</A></STRONG>&nbsp;t</EM><EM>hen try the link above again. Ensure pop-up blocker is off.</EM></P> Wed, 02 Aug 2023 16:09:02 GMT https://community.qlik.com/t5/Suggest-an-Idea/Qlik-Sense-Add-JWT-authentication-as-an-alternative-to-ticket/idc-p/2101079#M14324 Meghann_MacDonald 2023-08-02T16:09:02Z https://community.qlik.com/t5/Suggest-an-Idea/Qlik-Sense-Add-JWT-authentication-as-an-alternative-to-ticket/idc-p/2101080#M14325 Wed, 02 Aug 2023 16:09:04 GMT https://community.qlik.com/t5/Suggest-an-Idea/Qlik-Sense-Add-JWT-authentication-as-an-alternative-to-ticket/idc-p/2101080#M14325 Ideation 2023-08-02T16:09:04Z