admin管理员组

文章数量:1393402

I'm trying to use Kong as API Gateway with a custom authentication service to authenticate all users for all services in the upstream.

At the beginning I'll use my custom authentication service, but the solution can be using Keycloak or AWS Cogito.

1 - Can Kong redirect all unauthenticated requests to a specific route (the route for authentication service?)
2 - If Kong can't redirect it, how to authenticate the user before requesting protected routes?
3 - I'll need to use a IAM client library for all my services? For example:
4 - Can Kong check if the requests has a valid JWT token?
5 - The redirect will be called by the IAM library in the service and not in Kong? Is that?

本文标签: keycloakHow to protect services using Kong API Gateway to only authenticated requestsStack Overflow

版权声明:本文标题:keycloak - How to protect services using Kong API Gateway to only authenticated requests? - Stack Overflow 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1744646783a2617441.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。