Hey,
currently I don't see a good way to Authorize Users to Hosts (with the GW, not the Host). My suggestion would be, that an OpenId Provider like Keycloak can add a Host Claim to the Access Token, which consists of an array of hosts. The user is than only allowed these hosts.
Access Token Snippet:
Hey, currently I don't see a good way to Authorize Users to Hosts (with the GW, not the Host). My suggestion would be, that an OpenId Provider like Keycloak can add a
Host
Claim to the Access Token, which consists of an array of hosts. The user is than only allowed these hosts. Access Token Snippet:In Keycloak you could create a role for every host and assign the roles to users. Then you can use a Custom Client Scope to create the host claim.