Digital security lock concept

Flexible Authentication

Support for OAuth 2.0, API keys, JWT tokens, and custom authentication providers. NovaCMS lets you secure your API however your team prefers, with granular role-based access control.

Auth Options

  • OAuth 2.0 with PKCE flow
  • JWT with refresh tokens
  • API key management
  • RBAC with custom roles and permissions