# Authentication

## OAuth2 

We recommend using the OAuth2 authentication flow when integrating with our REST API. It utilizes the [JWT](https://jwt.io/) as a medium of exchange and a [Service Account](https://docs.developer.disruptive-technologies.com/service-accounts/introduction-to-service-accounts) for access control. After the authentication exchange is implemented, the returned access token allows you to perform HTTP requests efficiently.

Read about how to implement [OAuth2 REST API Authentication](https://docs.developer.disruptive-technologies.com/authentication/oauth2) to get started.

## Basic Auth

We also support Basic Auth for authenticating with a Service Account. While this is not recommended for production-level integrations, it can be quite useful for quick experimentation and prototyping. It is disabled by default but can be [enabled as desired](https://docs.developer.disruptive-technologies.com/service-accounts/creating-a-service-account#create-new).

Read about how to implement [Basic Auth](https://docs.developer.disruptive-technologies.com/authentication/basic-auth) to get started.