Authentication
The GetFTR API authenticates each request to a Publisher’s API using a JWT token, present in the Authorization header. To verify a request
has originated from GetFTR, the Publisher should validate the JWT token using the shared secret provided by GetFTR.
This page outlines the JWT token format.
JWT Header
{
"alg": "HS256",
"typ": "JWT"
}JWT Payload
{
"iss": "getftr",
"aud": "<publisher_id>",
"sub": "<integrator_id>",
"iat": 000000000,
"jti": "<uuid>",
"doi": "<doi>"
}| Property | Description |
|---|---|
iss | The issuer of the JWT token. Always set to getftr. |
sub | The ID of the integrator this request was triggered by. |
aud | The ID of the Publisher this request is intended for. |
iat | The time the JWT token was issued. |
jti | A unique identifier for the JWT token. |
doi | The first DOI in the "dois" property of the request body. |
Last updated on