# Authentications

Kestra provides 2 authentification methods for the moment:

  • Basic Auth: enabled by default
  • OIDC

First, you must configure the JWT token security:
Please generate a secret that is at least 256 bits and change the configuration like this:

micronaut:
  security:
    token:
      jwt:
        signatures:
          secret:
            generator:
              secret: "{{ Your secret here }}"

This secret must be the same on all your webservers instances and will be used to encode the JWT cookie of Kestra.