Documentation
SDKs and APIs
Explore developer products
Explore help resources

Security and authentication guide

Guide
Get started
Popular topics
Tutorials
Introduction
Types of authentication
How to use authentication
API key authentication
- Introduction
- API key credentials
- How to use an API key
- Tutorials
User authentication
- Introduction
- How to implement user authentication
- OAuth credentials (for user authentication)
- User authentication with ArcGIS APIs
- User authentication flows
- Tutorials
App authentication
- Introduction
- How to implement app authentication
- OAuth credentials (for app authentication)
- Client credentials flow
- Examples
  - Server-side app authentication (Node.js)
  - Server-side app authentication (PHP)
- Tutorials
Best practices
Reference
- Access tokens
- Privileges
- REST operations
- Portal security
- HTTP authorization headers
Tools
Datasets
FAQ
Terms of use
Glossary

Security and authentication

ArcGIS is a secure system that only allows authorized users and applications to access secure resources. As a developer, you can build applications that use authentication to access secure resources such as a portal, data services, or location services. ArcGIS supports three types of authentication: API key authentication for building public apps with location services; user authentication for creating private apps for your organization; and app authentication for creating server-enabled applications that work with ArcGIS Enterprise resources. The type of authentication you implement depends on the requirements of your application and whether you want users to sign in or not with an ArcGIS account.

What's in this guide

This guide shows you how to access secure resources with the following types of authentication:

API key authentication
User authentication
App authentication

Get started with authentication

Sign into ArcGIS using OAuth 2.0

Create developer credentials in a portal

Select privileges for developer credentials

Manage API key credentials in a portal

Manage OAuth credentials in a portal

API key authentication workflow

User authentication OAuth 2.0 flow

App authentication OAuth 2.0 flow

Build apps that use authentication

Learn about authentication

Introduction to authentication

Learn how ArcGIS uses authentication to protect secure resources.

Types of authentication

Learn about the different types of authentication and their billing methods.

How to use authentication

Learn how to use authentication to get an access token.

API key authentication

Create a long-lived access token to quickly implement authentication.

User authentication

Prompt users to sign in with ArcGIS to access resources on their behalf.

App authentication

Request access tokens for your application using a set of OAuth credentials.

Best practices

Learn about the security best practices recommended for authentication in custom apps.

Find code examples

ArcGIS Maps SDKs

JavaScript Maps SDK .NET Maps SDKKotlin Maps SDKSwift Maps SDKJava Maps SDKQt Maps SDK

Scripting APIs

Python APIREST JS REST API

Open source libraries

Esri LeafletMapLibreOpenLayersCesiumJS

Go to tutorials

Related guides

Mapping and location services

Portal and data services

Low-code/no-code app builders

Spatial analysis services

Offline mapping apps

What's in this guide
Learn about authentication
Find code examples
Related guides

Product support notes

ArcGIS Location PlatformArcGIS OnlineArcGIS Enterprise

API support notes

Documentation feedbackTake this short survey

Was this page helpful?

Copyright © 2024 Esri. All rights reserved.

Privacy
Terms of Use

Sign up to receive the latest news from Esri

Your browser is no longer supported. Please upgrade your browser for the best experience. See our browser deprecation post for more details.