Authentication methods
Cube supports the following methods to authenticate requests to APIs & integrations. Usually, an API supports authentication via one of these methods:
- User name and password (e.g., used by the SQL API).
- Kerberos and NTLM (e.g., used by the DAX API and MDX API).
- Identity provider (e.g., used by the Cube Cloud for Sheets).
- JSON Web Token (e.g., used by the REST API).
Authentication flow
Regardless of the method, the authentication flow includes the following steps:
- User identity information (e.g., password or access token) is passed to Cube.
- Cube validates the identity information.
- Cube associates the API request with a security context.
- The security context is used to configure member-level security and row-level security as well as set data access policies.