-
**Expected Behavior**
when this is used:
```java
@Bean
SecurityFilterChain configure(HttpSecurity http, AuthorizationManager authz)
throws Exception {
http.oauth2Resour…
-
Hello,
I've noticed that when the middleware returns a 403 Forbidden response, it only returns a plain text response:
```
"Forbidden"
```
However, in many cases, it would be preferable if the…
-
What would your suggestion be for enabling authn/authz when using kube-solo? I can think of a few ways that might work but before doing extra work or doing it in an unsuggested way, I figured I would…
-
Requests to mutate the store must be accompanied by a user token that can be used to validate both the identity of the user, and associated permissions.
Firebase gives us the option of using 3rd-par…
-
Blake pointed out that as we add authn/authz functionality within Istio via authservice we need to be mindful of how unexpected failures and in general resource ordering could potentially leave applic…
-
Implement a specific ledger integration for working with `x/authz`. This should come with very good instructions for using `x/authz` for some very specific usecases.
-
- At the one hand people should be able to log in with OpenID Connect (focus on Google, should be easily extensible to support other OpenID-like users).
- A user should be able to (after login) connec…
-
In the course of the discussion around PR #59 it was suggested to allow the Verifier to return a plain JSON Request Object. This is not supported by RFC 9101, which defines the basis of the Request UR…
-
This is very tricky to get it right for ambient, I expect the doc to cover:
L4 authz policy
L7 authz policy
Strategy moving from L4 authz policy to L7 authz policy
Various scenarios on if authz …
-
### Add claim_token to authz request
Using the [JS Policy](https://www.keycloak.org/docs/24.0.1/authorization_services/#_policy_js) in Keycloak, I need to know the parameters in the URL to decide i…