Suggest an Idea

MartijnOlivier · ‎2021-02-17

Advantages: This doesn't require an extra port (4243) to be open on the Qlik Sense side, it also doesn't require TLS mutual authentication (client certificate authentication)

Drawback: Customer needs to set up an extra virtual proxy for JWT authentication

When setting up this type of authentication in QDC, the customer will provide the private key of the certificate put inside the virtual proxy settings.

QDC will need some kind of code to generate a JWT token (libraries for different programming languages available that will be sent in the "Authorization" header to initiate the session, once Qlik Sense receives the token, it will create a session for the user (same way as with ticket authentication), from this point QDC should re-use the session cookie to maintain the same session at the time it does the API calls

Please note that there is a 5 sessions limit in a 5 minute interval on Qlik Sense license that are not core-based (QAP and core-based QAP) (which also applies to ticket authentication), I am not familiar if QDC has a mechanism to workaround this in case it needs to do different API calls in shorter sessions.

Meghann_MacDonald · ‎2023-08-02

From now on, please track this idea from the Ideation portal.

Link to new idea

Meghann

NOTE: Upon clicking this link 2 tabs may open - please feel free to close the one with a login page. If you only see 1 tab with the login page, please try clicking this link first: Authenticate me! then try the link above again. Ensure pop-up blocker is off.

Ideation · ‎2023-08-02

Suggest an Idea

Qlik Sense : Add JWT authentication as an alternative to ticket authentication to call Qlik Sense APIs

Qlik Sense : Add JWT authentication as an alternative to ticket authentication to call Qlik Sense APIs