JWT auth is useful when you need your backend app's Server SDK to be restricted by the same set of permissions.
-If your backend app's Server SDK is using an API key, it will fetch all resources reguardless of permissions. This means the Server SDK might fetch files and documents your user should not be able to see, which is not helpful when you need to act on behalf of a user.
+If your backend app's Server SDK is using an API key, it will fetch all resources regardless of permissions. This means the Server SDK might fetch files and documents your user should not be able to see, which is not helpful when you need to act on behalf of a user.
If your backend app's Server SDK is using a JWT, it will only fetch resources your user has permissions to access.
@@ -592,7 +592,7 @@ client -This will return every document reguardless of permissions, which could lead to privacy and security problems.
+This will return every document regardless of permissions, which could lead to privacy and security problems.
{
@@ -635,4 +635,4 @@ client
}If you're integrating existing backend services with Appwrite or adding backend endpoints to perform more complex logic, JWT authentication helps them behave similarly to actual Appwrite endpoints.
\ No newline at end of file +If you're integrating existing backend services with Appwrite or adding backend endpoints to perform more complex logic, JWT authentication helps them behave similarly to actual Appwrite endpoints.