Skip to content

Authentication on Services

When creating a service it is important to configure the appropriate authentication method based on your use case. UbiOps services currently support two authentication modes:

Token Authentication: Access using UbiOps API tokens

  • Requires users to include a valid UbiOps API token in the Authorization header
  • When enabled, our standard roles and permissions system applies. Since a service proxies requests to a deployment version, the user's permissions for that deployment version will be checked. It requires a user to have at least permissions to create requests on the deployment version.

Public Access: Disable authentication for completely open access

  • No authentication required; anyone with the service URL can access it
  • Suitable when you want to expose your application publicly without restrictions

Public access for services is blocked by default. Please contact us if you want to enable this option.

Security considerations

Public services are accessible by anyone and should be used with caution. While UbiOps provides various security measures, it cannot guarantee the security of user applications. Ensure that your application has its own security mechanisms in place if you choose to make it publicly accessible.