Hey guys, So we have been using Oathkeeper for the past year now for all our first party web apps. It has been working very well for us and we are now looking at the possibility to use Oathkeeper to serve our external API's. As for as authentication and authorization capabilities we are covered with the capabilities offered by Oathkeeper. Although I was looking at a way to use the decision metrics for billing/monetization and although it does come with some information we are missing the some information that would be provided by the AuthenticationContext Subject. Would you be kind enough to point me in the right direction here?

You are looking for more information on what is included in the

AuthenticationContext Subject

? Can you give me a bit of "context" on that subject, is it a part of Oathkeeper or something else?

I'm looking to get information on

AuthenticationContext Extra

where we will have the tenant_id linked to the current authenticated subject (being an api key, token, or other)

any ideas?

not really sorry,

AuthenticationContext

seems to be a term from Azure? Is it related to this? Forgive me if I am being daft here, just new to the term.

the ability to add additional configurable prometheus labels here: https://github.com/ory/oathkeeper/blob/master/metrics/prometheus.go

Would this be a change in Oathkeeper? Then the best way to get something started is a feature request on Github.

Yes it's related to the link you sent. Yes it would required a change in Oathkeeper. I'll submit a RFC.