CATS overview / reviewed

Scoped access,
without shared passwords.

Give customers a safe way to connect scripts, automations, and small apps to the APIs your product owns.

Credential path3 stages
Long-lived credentialCustom Access Tokencat_********4K9
01
Exchange through AAA
Short-lived credentialAccess tokenscope: issues:read
02
Your app's APIScope checked
01
Permission modelCustom scopes
02
Customer useScripts & automations
03
API boundaryYour app services

The division of responsibility

A small contract with clear owners.

CATS manages the credential lifecycle. Your app still owns permission design and request authorization.

APP
Your responsibility

Appfire app

  • Define product-specific scopes
  • Issue and manage CATs with the CATS SDK
  • Validate tokens and enforce scopes on APIs
@appfire-platform/cats-sdk
AAA
Platform responsibility

CATS + Authentication

  • Store each CAT's lifecycle
  • Exchange a CAT for a short-lived token
  • Carry the app-defined scopes forward
issues:readworkflow:run