DOCSADMINISTRATOR-GUIDECONFIGURATIONENTERPRISE-EDITIONAUTHENTIFICATIONS

Authentications

Contribute

Kestra provides two authentication methods:

Basic Auth: enabled by default
OpenID Connect (OIDC)

First, you must configure the JWT token security: Please generate a secret that is at least 256 bits and change the configuration like this:

yaml

micronaut:
  security:
    token:
      jwt:
        signatures:
          secret:
            generator:
              secret: "{{ Your secret here }}"

This secret must be the same on all your webserver instances and will be used to encode the JWT cookie of Kestra.

::: tip JWT configuration It is possible to change the JWT cookie behavior using Micronaut Cookie Token Reader configuration. For example, it is possible to define its maximum lifetime as micronaut.security.token.jwt.cookie.cookie-max-age: P2D. :::

Auths
- Basic Auth
- OpenID Connect (OIDC)

ConfigurationKestra Enterprise Edition

AuthentificationsAuths

​Authentications

Authentications