Authenticating with a Token

Tokens are basically random strings, much like a password, and can provide a simple authentication mechanism in some situations. However, tokens are only as safe as they are secret so other authentication schemes can provide more security in large installations. It is highly recommended to use one of the other NATS authentication mechanisms.

For this example, start the server using:

  1. > nats-server --auth mytoken

The code uses localhost:4222 so that you can start the server on your machine to try them out.

Connecting with a Token

Go

  1. // Set a token
  2. nc, err := nats.Connect("127.0.0.1", nats.Name("API Token Example"), nats.Token("mytoken"))
  3. if err != nil {
  4.     log.Fatal(err)
  5. }
  6. defer nc.Close()
  8. // Do something with the connection

Java

  1. Options options = new Options.Builder().
  2.                             server("nats://localhost:4222").
  3.                             token("mytoken"). // Set a token
  4.                             build();
  5. Connection nc = Nats.connect(options);
  7. // Do something with the connection
  9. nc.close();

JavaScript

  1. let nc = NATS.connect({url: `nats://127.0.0.1:${port}`, token: "mytoken!"});

Python

  1. nc = NATS()
  3. await nc.connect(servers=["nats://demo.nats.io:4222"], token="mytoken")
  5. # Do something with the connection.

Ruby

  1. NATS.start(token: "mytoken") do |nc|
  2.   puts "Connected using token"
  3. end

TypeScript

  1. let nc = await connect({url: server.nats, token: "mytoken"});

C

  1. natsConnection      *conn      = NULL;
  2. natsOptions         *opts      = NULL;
  3. natsStatus          s          = NATS_OK;
  5. s = natsOptions_Create(&opts);
  6. if (s == NATS_OK)
  7.     s = natsOptions_SetToken(opts, "mytoken");
  8. if (s == NATS_OK)
  9.     s = natsConnection_Connect(&conn, opts);
  11. (...)
  13. // Destroy objects that were created
  14. natsConnection_Destroy(conn);
  15. natsOptions_Destroy(opts);

Connecting with a Token in the URL

Some client libraries will allow you to pass the token as part of the server URL using the form:

nats://token@server:port

Again, once you construct this URL you can connect as if this was a normal URL.

Go

  1. // Token in URL
  2. nc, err := nats.Connect("mytoken@localhost")
  3. if err != nil {
  4.     log.Fatal(err)
  5. }
  6. defer nc.Close()
  8. // Do something with the connection

Java

  1. Connection nc = Nats.connect("nats://mytoken@localhost:4222");//Token in URL
  3. // Do something with the connection
  5. nc.close();

JavaScript

  1. let url = `nats://mytoken@127.0.0.1:${port}`;
  2. let nc = NATS.connect({url: url});

Python

  1. nc = NATS()
  3. await nc.connect(servers=["nats://mytoken@demo.nats.io:4222"])
  5. # Do something with the connection.

Ruby

  1. NATS.start("mytoken@127.0.0.1:4222") do |nc|
  2.   puts "Connected using token!"
  3. end

TypeScript

  1. let url = `nats://:mytoken@127.0.0.1:${port}`;
  2. let nc = await connect({url: url});

C

  1. natsConnection      *conn      = NULL;
  2. natsOptions         *opts      = NULL;
  3. natsStatus          s          = NATS_OK;
  5. s = natsOptions_Create(&opts);
  6. if (s == NATS_OK)
  7.     s = natsOptions_SetURL(opts, "nats://mytoken@127.0.0.1:4222");
  8. if (s == NATS_OK)
  9.     s = natsConnection_Connect(&conn, opts);
  11. (...)
  13. // Destroy objects that were created
  14. natsConnection_Destroy(conn);
  15. natsOptions_Destroy(opts);