Skip to content
This repository has been archived by the owner on Dec 7, 2020. It is now read-only.

Upstream Authorization Cookie #287

Merged
merged 1 commit into from
Nov 23, 2017
Merged

Upstream Authorization Cookie #287

merged 1 commit into from
Nov 23, 2017

Conversation

gambol99
Copy link
Contributor

@gambol99 gambol99 commented Nov 17, 2017
edited
Loading

  • adding an option to stop the proxy from including the authorization cookies in the upstream request

so disabling all authorization tokens would mean specifying --enable-authorization-cookies=false --enable-authorization-header=false --enable-token-header=false ..

TODO: add shortcut to disable all three

$ bin/keycloak-proxy --config config.yml --enable-authorization-cookies=false --enable-authorization-header=false --enable-token-header=false
...
[jest@starfury keycloak-proxy]$ nc -l 127.0.0.1 8080
GET / HTTP/1.1
Host: 127.0.0.1:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.94 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Language: en-US,en;q=0.9
Cache-Control: max-age=0
Cookie: event_filter=merged; seen_cookie_message=yes; sidebar_collapsed=false; kc-access=censored
Upgrade-Insecure-Requests: 1
X-Auth-Email: [email protected]
[email protected]
X-Auth-Expiresin: 2017-11-18 16:50:12 +0000 UTC
X-Auth-Family-Name: Jayawardene
X-Auth-Given-Name: Rohith
X-Auth-Name: Rohith Jayawardene
X-Auth-Roles: broker:uma_protection,broker:admin-user,broker:devops-user
X-Auth-Subject: ID
X-Auth-Userid: [email protected]
X-Auth-Username: [email protected]
X-Forwarded-For: 127.0.0.1
X-Forwarded-Host: 127.0.0.1:8080
X-Forwarded-Proto: 
Accept-Encoding: gzip
Connection: close

@gambol99 gambol99 mentioned this pull request Nov 18, 2017
Closed
@gambol99 gambol99 force-pushed the upstream_auth_tokens branch from 3f3b03f to e8ecda8 Compare November 18, 2017 16:42
@gambol99
Upstream Authorization Cookie
d070c5d 
- adding an option to stop the proxy from including the authorization cookies in the upstream request
@gambol99 gambol99 force-pushed the upstream_auth_tokens branch from e8ecda8 to d070c5d Compare November 18, 2017 16:45
@gambol99 gambol99 merged commit 81c7892 into master Nov 23, 2017
@gambol99 gambol99 deleted the upstream_auth_tokens branch November 23, 2017 21:14
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@gambol99