==============
Authentication
==============

D4Science adopts state-of-the-art industry standards for authentication and authorization. 
Specifically, the implementation fully adopts `OIDC (OpenID Connect) <https://openid.net/connect>`_ 
for authentication and UMA 2 (User-Managed Authorization) for authorization flows. 
`JSON Web Token (JWT) Access tokens <https://jwt.io/>`_ are used for both authentication and authorization.

**Obtain your Bearer token here:** https://dev.d4science.org/how-to-access-resources

**Context-based Access:**

Access to resources is controlled by context (scope). Users can only see and manipulate resources 
within contexts they have access to. The current context is determined by the authorization token.
