Server Authentication

This page covers authentication and authorization for Kubiya agent servers.

Authentication Methods

API Key Authentication

The most common authentication method uses API keys in headers.

curl -H "Authorization: Bearer YOUR_API_KEY" \
  https://your-server.com/api/endpoint

JWT Authentication

For user-specific authentication, JWT tokens are supported.

curl -H "Authorization: Bearer YOUR_JWT_TOKEN" \
  https://your-server.com/api/endpoint

Configuration

Environment Variables

KUBIYA_API_KEY=your_api_key_here
KUBIYA_JWT_SECRET=your_jwt_secret_here
KUBIYA_AUTH_REQUIRED=true

Server Configuration

server:
  auth:
    required: true
    methods:
      - api_key
      - jwt
    api_key_header: "Authorization"
    jwt_secret: "${KUBIYA_JWT_SECRET}"

Security Best Practices

Use HTTPS: Always use HTTPS in production
Rotate Keys: Regularly rotate API keys
Scope Permissions: Use least privilege principle
Rate Limiting: Implement rate limiting per API key

Server Overview
Server Endpoints
Platform Authentication

Getting Started

Client SDK

Workflow DSL

Tools SDK

Server Authentication

Server Authentication

Authentication Methods

API Key Authentication

JWT Authentication

Configuration

Environment Variables

Server Configuration

Security Best Practices

Getting Started

Client SDK

Workflow DSL

Tools SDK

​Server Authentication

​Authentication Methods

​API Key Authentication

​JWT Authentication

​Configuration

​Environment Variables

​Server Configuration

​Security Best Practices

​Related Documentation

Server Authentication

Authentication Methods

API Key Authentication

JWT Authentication

Configuration

Environment Variables

Server Configuration

Security Best Practices

Related Documentation