Downstream Clients

A downstream client is an application that uses Bizzkit User Management (AUTH) to authenticate its users or to authenticate itself when calling protected APIs.

Bizzkit User Management supports the following types of downstream clients:

• Machine applications are systems that act on their own behalf when interacting with a protected API, without user involvement.
• Interactive applications are server-side clients that use AUTH to authenticate their users, such as a web application.
• Client-side applications are untrusted applications that authenticate on behalf of the user before accessing a protected API, such as a single-page application.
• Protected APIs are APIs that are protected by AUTH and require valid tokens for access.

See the FAQ for tips on when which client type is appropriate.

Further reading

• Legacy applications — understanding and migrating away from legacy application mode