Authentication

This section describes how to authenticate towards the DGM API.

Maskinporten JWT access token

This is the intended approach for both production and test environments.

Info

This section is about access to the API itself. It doesn't cover authorization for specific operations on funerals, and access to certain funerals. This is covered in the authorization section.

If your organization have not used Maskinporten before, you'll need to get access to maskinporten firstly. You can do this by following the instructions here.

When this is done, we will need to give you access to the scopes you need. Please reach out to us to get this set up. For this we will need to know the organization number that your organization has in Maskinporten.

There are currently two scopes available: dgm:graveyardauthority and dgm:funeralhome. Depending on whether you operate on behalf of a graveyard authority or a funeral home, you will be granted access to the corresponding scope.

When we have granted your organization access to the correct scope, you can follow the guide here to generate a JWT access token.

There exists client libraries for Maskinporten. For instance, Altinn has a .NET library available here.

Access code (removed)

This approach to authentication has been revoked as it was intended for use in the earliest stages of the DGM piloting. Please use maskinporten to authenticate with the DGM API.