📄️ Authentication Overview
Fire Arrow Server authenticates incoming requests using JWT tokens (OAuth 2.0 / OpenID Connect) or API tokens. Multiple authentication providers can be active at the same time, so you can support different identity providers for different clients or environments from a single deployment.
📄️ OAuth / OIDC Providers
Fire Arrow Server supports JWT-based authentication through standard OpenID Connect (OIDC) providers and Azure Identity (for managed-identity service-to-service scenarios). You can configure multiple providers simultaneously.
📄️ API Tokens
API tokens provide a lightweight authentication mechanism for scenarios where a full OAuth flow would introduce unnecessary complexity or is not feasible. Their primary use case is anonymous or pseudonymous data collection — for example, clinical studies where patients scan a QR code to participate without revealing their identity to the study infrastructure.