Puma · Authentication Profile

Puma Authentication

Authentication

Puma secures its APIs with apiKey across 1 declared security scheme, as derived from its OpenAPI definitions.

Web ServerRubyRackApplication ServerHTTPOpen Source
Methods: apiKey Schemes: 1 OAuth flows: API key in: query

Security Schemes

controlToken apiKey
· in: query (token)

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/puma-openapi.yml
summary:
  types:
  - apiKey
  api_key_in:
  - query
schemes:
- name: controlToken
  type: apiKey
  in: query
  parameter: token
  description: Shared control-app authentication token. Configured via Puma's `--control-token`
    option (or `auth_token` in the control app configuration). Required on every request; missing
    or wrong token returns 403.
  sources:
  - openapi/puma-openapi.yml