Should we use API tokens?

[sanchegm]

Should we use API tokens?

• While tokens are best utilized for a high number of concurrent users and traffic, basic authentication (only username/password) is not recommended for production environments because of the security risk.
• It would be in best practice to implement this.

Docs:
https://www.django-rest-framework.org/api-guide/authentication/#generating-tokens

https://simpleisbetterthancomplex.com/tutorial/2018/11/22/how-to-implement-token-authentication-using-django-rest-framework.html

https://www.django-rest-framework.org/api-guide/authentication/

https://www.django-rest-framework.org/api-guide/authentication/#tokenauthentication