...
Overview
We have incorporated a new method of client authentication into csf-security. We are calling this method "Hash Authentication", as it relies on a hashing algorithm to authenticate the client. It will be primarily used for APIs. The purpose of this authentication method is to allow client applications to authenticate to our web APIs without having to provide Touchstone credentials or manage an X509 certificate. Hash authentication was first used in the Nelnet APIs (Nelnet is an external system that exchanges data with MITSIS via an API).
How Hash Authentication Works
TBDSee here.
When Should We Use Hash Authentication?
...
role|qualifier[ qualifier]
e.g.
math.mit.edu=,ROLE_DEPTAUDIT_USER|18 8&ROLE_OTHER_API_ADMIN,true,gr4!d
...