search

backstage / backstage

Backstage is an open framework for building developer portals
https://backstage.io/
Apache License 2.0
27.89k stars 5.87k forks source link

🚀 Feature: Allow Custom Cloudflare Header and Custom Cloudflare Cookie Key #25515

Closed jasondiazg closed 1 month ago

jasondiazg commented 3 months ago

🔖 Feature description

The Cloudflare auth provider should allow use custom cf-access-jwt-assertion header and the CF_Authorization cookie key.

🎤 Context

I have my backstage deployment protected by Cloudflare, however, my Cloudflare performs some custom internal workflows and as a result the cf-access-jwt-assertion header and the CF_Authorization cookie key are not present in the request that Backstage receive. The Cloudflare auth provider has the two values hardcoded, the header is harcoded as constant and the cookie key directly in the function, both values should be configurables in the auth.providers.cfaccess section in the app-config.yaml file.

✌️ Possible Implementation

The Cloudflare auth provider should allow these two optional configurations auth.providers.cfaccess.cfheader and auth.providers.cfaccess.cfcookiekey in the app-config.yaml, if the values are not provided, then it should use the default ones (cf-access-jwt-assertionandCF_Authorization`).

👀 Have you spent some time to check if this feature request has been raised before?

🏢 Have you read the Code of Conduct?

Are you willing to submit PR?

Yes I am willing to submit a PR!

### Tasks
- [ ] https://github.com/backstage/backstage/pull/25516
freben commented 3 months ago

Sure! Makes sense, if that's configurable in the other end. Could the config fields perhaps be named jwtHeaderName and authorizationCookieName?

jasondiazg commented 3 months ago

Sure! Makes sense, if that's configurable in the other end. Could the config fields perhaps be named jwtHeaderName and authorizationCookieName?

Hi @freben! Of course, let me change it.

jasondiazg commented 3 months ago

I already made the change and fix the tests, kindly take a look @freben @camilaibs #25516

github-actions[bot] commented 1 month ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

freben commented 1 month ago

Fixed!