sticky-guitar-94474
04/12/2022, 11:57 AMoauth2_introspection
authenticator
from downstream request to Introspection Server?
ServiceA ->API call-> ServiceB
API call is intercepted by EnvoyFilter and forwards request to Oathkeeper’s decision engine
Now oathkeeper checks with oauth2_introspection
authenticator which in-turn makes call to an AuthService
Now the auth-service validates token responds back with some extra data, which in the mutators
level get’s added, as X-User-token
header and forwarded to ServiceB
But we have an internal ServiceC(trusted service), it already sends the X-User-token
but we need it to reach the AuthService along with the Token
So how can we forward extra data to the Oauth2_introspection server ?sticky-guitar-94474
04/12/2022, 12:16 PM