Remote Authentication with JSON API

I’m investigating whether Kirby can be used to serve data to external apps. If Kirby and the app run on the same server, content representations or the kirby-json-api plugin work great and authorization based on user roles work as expected.

I’m now trying to figure out, how I could handle authorization between different servers that don’t share the user’s session. Assume you have a 3rd party app that tries to query the REST API on a different server. Did someone do this, are there plugins, what are some keywords / directions to look into?

try this.

edit: or just the client if you have oauth2 at hand.