A JWT token must be indicated in the Authorization header when accessing the REST API methods (except for authorization methods). This JWT token grants the right to use REST API.
JWT format: JWT<space><the JWT received from the authorization method>
Authorization: JWT eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTU3MDM1OTEsImxvZ2luIjoiYWR0…4ifQ.0I0CXcwWWxZWARE0eUEPOAvKd0prW_Uf0jbOMLnd5SI
The JWT expiry day is indicated in the payload-attribute exp in the Unix Time Stamp format in UTC. After the expiry, when accessing the method the Error 401 Unauthorized will appear.
The JWT can be obtained using the method POST /auth/login?jwt=1 or, upon expiry, post /auth/refresh by indicating in the Authorization refresh header the JWT obtained during the authorization from post /auth/login?jwt=1.