Authentik · Authentication Profile

Authentik Authentication

Authentication

Authentik secures its APIs with apiKey across 2 declared security schemes, as derived from its OpenAPI definitions.

AuthenticationAuthorizationIdentity ProviderLDAPOAuthOpen SourceOpenID ConnectSAMLSCIMSelf-Hosted
Methods: apiKey Schemes: 2 OAuth flows: API key in: cookie, header

Security Schemes

tokenAuth apiKey
· in: header (Authorization)
sessionAuth apiKey
· in: cookie (authentik_session)

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/authentik-openapi.yml
summary:
  types:
  - apiKey
  api_key_in:
  - cookie
  - header
schemes:
- name: tokenAuth
  type: apiKey
  in: header
  parameter: Authorization
  description: |-
    authentik token authentication. Use header
    `Authorization: Bearer <token>` with a token created in the
    Tokens & App Passwords section.
  sources:
  - openapi/authentik-openapi.yml
- name: sessionAuth
  type: apiKey
  in: cookie
  parameter: authentik_session
  description: Browser session cookie for interactive use.
  sources:
  - openapi/authentik-openapi.yml