stackoom
  简体   繁体   中英

Can KrakenD validate access keys sent in the body rather than header

 原文  2022-08-23 11:16:15       krakend/ snowplow

Question

I have a usage tracking library(snowplow) which needs to send data to a kinesis stream collector. We are using KrakenD in the middle for api gateway. Inorder to secure this, I need to pass access token. Snowplow at present does not allow custom headers at the present, which prevents me from sending this data. Is there an open in KrakenD which allows it to validate a token sent in the body rather than the header?

1 answers

solution1
 0  2022-09-01 10:42:33

KrakenD JWT validation expects you to send the token data in the Bearer header or inside a cookie. You cannot validate a token sent in the body.

I don't understand what is the problem of Snowplow not accepting custom headers. The validation would occur on KrakenD side and KrakenD does not send any custom header to Snowplow unless you explicitly add them in the input_headers list. If you have more information, I'd be happy to assist.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question krakend how to handle multiple api keys How to configure keycloak with krakend to access apache2 webserver? KrakenD returns a 500 when the body of the backend endpoint doesnt have any data Krakend propogate nested calim Cookie set on KrakenD KrakenD - Adding custom header from a datastore to requests KrakenD catchall path connection refused error with Krakend api-gateway? KrakenD HTTP 405 Error When Polling with OPTIONS Is there a way to send metadata in krakend endpoint configuration?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM