# Authentication

## Prerequisite

[QuickStart](https://docs.golden.xyz/godel-python-sdk/quickstart)

This guide requires installation of [Web3.py](https://github.com/ethereum/web3.py).

You can do this with `pip install godel[web3]` and comes pre-installed if using the godel docker image.

### 1. Connect to Golden Web3 API
Let's connect the python wrapper to the Golden GraphQL API.

You can run your basic queries against the API without authenticating, but will be restricted from mutations and certain queries until you connect using your USER_ID (your wallet address) and PRIVATE_KEY (wallet secret).

Note: If you encounter errors with connection, ensure that the wallet being used has been connected to your profile at

In [6]:
USER_ID = "0xd0587b87a875784568gf967679a58f578"
PRIVATE_KEY = "65687a467467m357ghf476f5846578678a5858a658758ut58587674674x67567"

In [7]:
from godel import GoldenAPI

goldapi = GoldenAPI()

### 2. Authenticate and set JWT

This will set the JWT token key in your GoldenAPI object so you should have permission to hit all endpoints after running the below.

In [None]:
# Retrieve one-off nonce from GraphQL API
message_response = goldapi.get_authentication_message(user_id=USER_ID)
message_response

# Sign and verify nonce with your wallet's private key (KEEP THIS SECURE)
from web3.auto import w3
from eth_account.messages import encode_defunct

message_string = message_response["data"]["getAuthenticationMessage"]["string"]
message = encode_defunct(text=message_string)
signed_message = w3.eth.account.sign_message(message, private_key=PRIVATE_KEY)
signature = signed_message.signature.hex()

# Authenticate with Golden's API and you'll recieve a jwt bearer token
auth_response = goldapi.authenticate(
    user_id=USER_ID,
    signature=signature
)

jwt_token = auth_response["data"]["authenticate"]["jwtToken"]

# Set JWT token to verify your wallet/role and unlock permissions to the rest of the API
goldapi.set_jwt_token(jwt_token=jwt_token)

print("Your JWT Token:\n", jwt_token)

#### Convenience Method for Authentication

Runs the above authentication process in a secure and convenient method.

In [None]:
goldapi.get_authentication_token(
    user_id=USER_ID,
    wallet_private_key=PRIVATE_KEY
)

#### Retrieve JWT Token from GUI

Follow the directions at https://docs.golden.xyz/guides/authentication to skip the programmatic authentication and plainly retrieve your JWT token from https://dapp.golden.xyz.

### 3. Test with Graphql Calls

Once authenticated, you'll now have permission to search, disambiguate, validate, and submit data to the Golden Protocol.

In [17]:
goldapi.entity_search("golden")

{'data': {'entityByName': {'nodes': [{'id': '5c0d11ad-b6e7-4d08-a0f1-6a224d93f3a1',
     'name': 'Golden',
     'description': 'Golden is a company started in San Francisco, USA. The company is building an encyclopedia and knowledge tool. The founder and CEO of Golden is Jude Gomila.',
     'thumbnail': 'https://golden-media.s3.amazonaws.com/topics/5253ceef-b9f0-49c5-ae0e-e6a445078551.png',
     'goldenId': None,
     'pathname': '/entity/5c0d11ad-b6e7-4d08-a0f1-6a224d93f3a1'},
    {'id': '7baeabfe-5abe-4f91-a280-1a8d238544c2',
     'name': 'Golden State Warriors',
     'description': 'The Golden State Warriors of the National Basketball Association are a professional basketball team based in Oakland, California that competes in the Pacific Division of the Western Conference. Founded in 1946, the Warriors have won three NBA championships.',
     'thumbnail': 'https://golden-storage-production.s3.amazonaws.com/topic_images/b49f887f78404364ac63b084db7e7d79.png',
     'goldenId': '34936',