Django-OAuth-ToolKit : Generating access token's for multiple resources/services using client credentials grant type of OAuth2.0

Question

I have a couple of backend API\'s which are Django projects. They have a UI ( single page app) to it and a user name password based login.

My clients are usually dev

Answer 1

To simply secure the backend you can use the builtin Token Authentication.

It's perfectly secure to get started. It limits you to a single token per user/account which may impact the "user experience" when it comes time to rotate/revoke a token. There are also some downsides when it comes to scaling up to support large transactional volumes. Otherwise it's really fine.

Once you better understand your needs you can consider moving toward JWT, OAuth or other more advanced/complex token based authentication approaches.