Topics on this page

Get started

BriteAPI uses BriteAuth for authentication. BriteAuth is a highly scalable system offering best-of-class security features including federated user identity, comprehensive MFA capabilities, and user directory integrations such as Microsoft Active Directory Service.

BriteAuth leverages Cognito, Amazon Web Service’s authorization product, to meet HIPAA, PCI, and SOC 1, 2, and 3 authorization compliance. For APIs, BriteAuth uses Lambda authorizers to apply authentication on APIs hosted on API Gateway. All requests must have Cognito User’s accessToken in the Authorization header in order to access secure endpoints.

Secured APIs require Cognito User’s accessToken value passed in the Authorization header.

To get a token, refer to: