{
  "id": "bbg-p0403-api-gateways-and-contracts-api",
  "title": "REST API Authentication Methods",
  "chapter": "identity-access-and-auth",
  "batch": "11",
  "rank": 105,
  "sourcePage": 403,
  "sourcePointer": "p. 403",
  "status": "accepted",
  "reviewerStatus": "reviewed",
  "fidelityScore": 0.9,
  "canvas": {
    "width": 960,
    "height": 640
  },
  "fireworksTechGraph": {
    "style": "style-1-flat-icon",
    "diagramType": "comparison",
    "topologyNotes": [
      "source page render inspected",
      "extracted page text inspected",
      "source page render inspected",
      "preserve REST auth methods: basic credentials, session cookie, bearer token, JWT-style stateless token, OAuth2 delegation, and API keys",
      "retargeted from API chapter to identity-access-and-auth"
    ],
    "publicBoundary": [
      "original vector output",
      "no source pixels",
      "no source mark or long wording"
    ]
  },
  "callouts": [],
  "sourceReview": {
    "conceptAnchors": [
      "concept: basic authentication",
      "concept: session authentication",
      "concept: token authentication",
      "concept: JWT",
      "concept: OAuth2"
    ],
    "labelSource": "curated",
    "semanticStatus": "reviewed"
  },
  "groups": [
    {
      "id": "methods",
      "label": "Auth methods",
      "x": 58,
      "y": 126,
      "w": 844,
      "h": 318
    }
  ],
  "shapes": [
    {
      "id": "basic",
      "kind": "rect",
      "label": "Basic",
      "detail": "credentials",
      "x": 100,
      "y": 178,
      "w": 122,
      "h": 58,
      "tone": "red"
    },
    {
      "id": "session",
      "kind": "rect",
      "label": "Session",
      "detail": "server cookie",
      "x": 260,
      "y": 178,
      "w": 122,
      "h": 58,
      "tone": "green"
    },
    {
      "id": "token",
      "kind": "rect",
      "label": "Token",
      "detail": "bearer",
      "x": 420,
      "y": 178,
      "w": 122,
      "h": 58,
      "tone": "blue"
    },
    {
      "id": "jwt",
      "kind": "rect",
      "label": "JWT",
      "detail": "claims signed",
      "x": 580,
      "y": 178,
      "w": 122,
      "h": 58,
      "tone": "orange"
    },
    {
      "id": "oauth",
      "kind": "rect",
      "label": "OAuth2",
      "detail": "delegation",
      "x": 740,
      "y": 178,
      "w": 122,
      "h": 58,
      "tone": "purple"
    },
    {
      "id": "keys",
      "kind": "rect",
      "label": "API keys",
      "detail": "app identity",
      "x": 340,
      "y": 342,
      "w": 122,
      "h": 58,
      "tone": "teal"
    },
    {
      "id": "chooser",
      "kind": "diamond",
      "label": "Choose by risk",
      "detail": "scope revoke",
      "x": 526,
      "y": 326,
      "w": 136,
      "h": 86,
      "tone": "gray"
    }
  ],
  "connectors": [
    {
      "from": "basic",
      "to": "chooser",
      "label": "simple",
      "flow": "alt"
    },
    {
      "from": "session",
      "to": "chooser",
      "label": "stateful",
      "flow": "data"
    },
    {
      "from": "token",
      "to": "chooser",
      "label": "stateless",
      "flow": "main"
    },
    {
      "from": "jwt",
      "to": "chooser",
      "label": "claims",
      "flow": "control"
    },
    {
      "from": "oauth",
      "to": "chooser",
      "label": "delegated",
      "flow": "async"
    },
    {
      "from": "keys",
      "to": "chooser",
      "label": "service",
      "flow": "data"
    }
  ]
}