Authentication & Authorization Overview

Authentication

When using the TruckMate REST APIs the calling application must pass along a Bearer Token to prove their identity to the On-Premise API server. Bearer Tokens are the predominant type of access token used with OAuth 2.0. A Bearer Token must be set in the Authorization header of every request.

TruckMate REST APIs offer 2 methods for authentication.

• TruckMate API Key generated in one of TruckMate’s Window applications
• Login endpoint to generate a time sensitive JWT token

Authorization

TruckMate REST APIs offer 5 methods of authorization which allow varying access to endpoints and data

• TruckMate User API Key generated within the Security Configuration application on the TruckMate API Credentials tab.
• Login endpoint to generate a time sensitive JWT token
• Client API Key
• Vendor API Key
• TID