Overview
The Authentication Token allows you to prevent unauthorised use of the Userlane snippet by adding authentication and verification steps. When included into Userlane snippet, the token is passed to API during initialization to authenticate users from the first request and provide an additional security layer.
How it works
This token verifies a User at the moment of their first request to Userlane, adding an extra layer of security. It is in addition to - not a replacement for - the Public ID.
This piece to include into Userlane snippet:
Userlane('init', '<property-id>', { clientToken: '...' });
Key points:
Tokens are optional - omit if not needed.
Use short-lived tokens, rotate regularly.
Never log or expose tokens in unsecured locations.
If you have multiple apps with deployed Userlane - you cans et up separate token for each
If provided, the token is validated before any User data is processed.
