Skip to content


Limited Availability

This feature is only available in team namespaces



Maskinporten is a service provided by DigDir that allows API providers - in this case, external agencies - to securely enforce server-to-server authorization of their exposed APIs using OAuth 2.0 JWT grants. It allows API providers to model access policies by using scopes based on the organization numbers of the consumers.

The NAIS platform provides support for declarative registration of Maskinporten resources. These cover two distinct use cases:

For API consumers: - a client that your application may use to integrate with Maskinporten, and in turn consume services and APIs served by external agencies

For API providers: - user-defined scopes within Maskinporten that are exposed to and consumable by other organizations that are granted access.


If you want to consume an external API, you'll need a client.


If you want to expose an API to external consumsers, you'll need to define scopes.

Last update: 2022-09-13
Created: 2021-08-13