summaryrefslogtreecommitdiffstats
path: root/src/tools/emcoui/middle_end/authproxy/README.md
blob: 1d68a431cfc7fc5cfce4c6be1fa33072647b07cc (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
Authproxy is part of middleend and it exposes following 3 apis
1. **/v1/login**
   - Redirects user to keycloak login page.
   - Sets a cookie with original URL
2. **/v1/callback**
   - After successful login gets auth code and exchange it for token.
   - Set id_token and access_token in cookie and redirects to original URL
3. **/v1/auth**
   - Retrieve idtoken from cookie and verifies the JWT.
   - If id_token is valid then access to resources else redirects to login page.

Required inputs of authproxy comes from authproxy section of helm config
- Issuer
- Redirect URI
- Client id