happy-morning-85531
03/03/2022, 10:22 AMid_token
mutator doesnt change the header?happy-morning-85531
03/03/2022, 2:38 PMdamp-sunset-69236
03/03/2022, 2:43 PMhappy-morning-85531
03/03/2022, 2:44 PMdamp-sunset-69236
03/03/2022, 2:47 PMaccess-rules.yml
configurationdamp-sunset-69236
03/03/2022, 2:48 PMhappy-morning-85531
03/03/2022, 2:48 PMdamp-sunset-69236
03/03/2022, 2:49 PMaccess-rules.yml
? Maybe I can help you therehappy-morning-85531
03/03/2022, 2:49 PM[{
"id": "general",
"match": {
"url": "https://<.*>.<http://company.com|company.com><.*>",
"methods": [
"GET", "POST", "PUT", "DELETE", "PATCH", "HEAD"
]
},
"authenticators": [{
"handler": "oauth2_client_credentials"
},
{
"handler": "oauth2_introspection"
}],
"authorizer": {
"handler": "allow"
},
"mutators": [{
"handler": "id_token"
}]
}]
happy-morning-85531
03/03/2022, 2:50 PMhappy-morning-85531
03/03/2022, 2:50 PMauthenticators:
oauth2_client_credentials:
enabled: true
config:
token_url: <http://hydra-public:4444/oauth2/token>
oauth2_introspection:
enabled: true
config:
cache:
enabled: true
ttl: 5s
introspection_url: <http://hydra-admin:4445/oauth2/introspect>
introspection_request_headers:
x-forwarded-proto: https
authorizers:
allow:
enabled: true
mutators:
noop:
enabled: false
id_token:
enabled: true
config:
issuer_url: "<http://hydra-public:4444>"
jwks_url: "<http://hydra-admin:4445/keys/hydra.openid.id-token>"
ttl: 60s
claims: |
{
"session": {{ .Extra | toJson }}
}
damp-sunset-69236
03/03/2022, 2:57 PMaccess-rules:
section from your oathkeeper.yml?happy-morning-85531
03/03/2022, 2:59 PMhappy-morning-85531
03/03/2022, 2:59 PMaccess_rules:
repositories:
- file:///etc/rules/access-rules.json
damp-sunset-69236
03/03/2022, 3:05 PMhappy-morning-85531
03/03/2022, 3:11 PMhappy-morning-85531
03/03/2022, 3:11 PMhappy-morning-85531
03/03/2022, 3:22 PMhappy-morning-85531
03/04/2022, 6:46 AMdamp-sunset-69236
03/04/2022, 7:45 AM