Securing communication between RASA and a custom action server

I have an exiting web app that allows my users to perform may self service tasks that is a natural fit for running as a custom action server for RASA. I’ve got my instance of RASA and this web app talking back and forth but I can’t find any documentation securing that communication. I would like for RASA to be able to provide a token or something to authenticate itself to my custom action server. Is there any way to do that?

1 Like

You can see the endpoints.yml file settings here. For the token:

  url: "https://localhost:5055"
  token: "your token"
1 Like

Thanks, I’ll dig into that. Do you happen to know how that token gets passed? Is it set as the Bearer header or just included in the payload?