NATS Docs
NATS.ioTwitterSlackGitHub
Search…
Welcome
Release Notes
What's New!
NATS Concepts
Overview
What is NATS
Subject-Based Messaging
Core NATS
JetStream
Subject Mapping and Partitioning
NATS Service Infrastructure
Security
Connectivity
Using NATS
NATS Tools
Developing With NATS
Running a NATS service
Installing, running and deploying a NATS Server
Environmental considerations
NATS and Docker
NATS and Kubernetes
NATS Server Clients
Configuring NATS Server
Configuring JetStream
Clustering
Super-cluster with Gateways
Leaf Nodes
Securing NATS
Enabling TLS
Authentication
Tokens
Username/Password
TLS Authentication
NKeys
Authentication Timeout
Decentralized JWT Authentication/Authorization
Authorization
Multi Tenancy using Accounts
OCSP Stapling
Logging
Enabling Monitoring
MQTT
Configuring Subject Mapping
System Events
WebSocket
Managing and Monitoring your NATS Server Infrastructure
Reference
FAQ
NATS Protocols
Legacy
STAN aka 'NATS Streaming'
nats-account-server
Powered By GitBook
Authentication
The NATS server provides various ways of authenticating clients:
Authentication deals with allowing a NATS client to connect to the server. Except for JWT authentication, authentication and authorization are configured in the authorization section of the configuration.

Authorization Map

The authorization block provides authentication configuration as well as authorization:
Property
Description
​token​
Specifies a global token that can be used to authenticate to the server (exclusive of user and password)
​user​
Specifies a single global user name for clients to the server (exclusive of token)
​password​
Specifies a single global password for clients to the server (exclusive of token)
users
A list of user configuration maps
​timeout​
Maximum number of seconds to wait for client authentication
For multiple username and password credentials, specify a users list.

User Configuration Map

A user configuration map specifies credentials and permissions options for a single user:
Property
Description
​user​
username for client authentication. (Can also be a user for tls authentication)
​password​
password for the user entry
​nkey​
public nkey identifying an user
​permissions​
permissions map configuring subjects accessible to the user
Previous
Enabling TLS
Next
Tokens
Last modified 6mo ago
Export as PDF
Copy link
Edit on GitHub
Contents
Authorization Map
User Configuration Map