jwtproxy
jwtproxy copied to clipboard
quay
An HTTP-Proxy that adds AuthN through JWTs
When click on the "Docker Repository on Quay" link, it goes to quay.io and shows "Repository not found". Maybe, it is a result of https://github.com/quay/jwtproxy/commit/b4167c1f007dde4c1ef1172f94ee8728cdd400e9. The repository URL before that...
Right now if jwtproxy shuts itself down (because it can't publish a key, for example), it leaves the socket it was listening on behind, which causes an error when it...
Create nonce storage type `none` to disable JTI replay protection. This is very useful when working with clients like web browsers which can store and reuse a JWT until expiry....
This may already be supported and I'm just missing it, but can the reverse proxy currently be used to just verify signatures on unencrypted JWTs? I'd like to use this...
Currently there are 2 options to configure jwtproxy: a) preshared or b) with a keyregistry which is only implemented by dex. This PR adds another option to automatically fetch the...
When using jwtproxy as a generic oauth2-proxy which verifies access tokens, a client will reuse the same access token it received from the IdP as long as it remains valid....
When trying to acces jwtproxy with an invalid JWT, we should instead of returning Forbidden 403, return 401 Unauthorized.
Currently there is no reference implementation of the keyserver in this code base. We should provide one. Here is [the API](https://github.com/coreos/jwtproxy/blob/master/jwt/keyserver/keyregistry/README.md). Ideally we also provide a gRPC and OpenAPI/swagger doc...
This is super confusing. We need to rename things to make the config more intuitive.
I think it makes sense to have the error message on verification failure be configurable. Right now it returns a `403` with `jwtproxy: unable to verify request: No JWT found`...