# Fibre Gateway : Authentication

# Introduction

The Fibre Cafe is a scalable, unified platform to support L2C provisioning, in-life modification/cease and
T2R trouble resolution between communication providers (CP) and network operators or aggregators.

The Fibre Cafe is secured using the standard OAuth 2.0 authorization protocol - all requests must include a valid
access token. Tenant access tokens provide access to the Tenant API and supplier access tokens provide access to
the Supplier Updates API. IP address whitelisting is also enabled so all callers must provide the static public IP
address for any inbound traffic.

Access tokens can be retrieved from this endpoint - they are intended to be re-used and not created per request. 
The tokens will expire in 60 minutes by default - at which point a new token can be requested.
__

© 2022-2026 Strategic Imperatives


Version: 1.0

## Servers

```
https://prod.fibregateway.com/v1
```

## Download OpenAPI description

[Fibre Gateway : Authentication](https://docs.thefibrecafe.net/_bundle/openapi/prod/auth-api/gen/index.yaml)

## Other

### Tenant authentication - retrieve access token.

 - [POST /auth/tenant/access-token](https://docs.thefibrecafe.net/openapi/prod/auth-api/gen/other/gettenantaccesstoken.md): This endpoint is called to retrieve an access token which must be provided in the header
on subsequent tenant calls to the gateway.

Either Authorization header or client id/secret must be provided.

### Supplier KCI authentication - retrieve access token.

 - [POST /auth/supplier/access-token](https://docs.thefibrecafe.net/openapi/prod/auth-api/gen/other/getsupplieraccesstoken.md): This endpoint is called to retrieve an access token which must be provided in the header
on subsequent supplier KCI calls to the gateway.

Either Authorization header or client id/secret must be provided.