This seems as basic question but I've failed to find answer
I want to use kong for single sign on
I've followed https://github.com/oktadeveloper/okta-kong-origin-example to configure kong against okta
and everything works fine for this example.
Based on that I wanted to "protect" access to login endpoint in my service expecting to get X-Userinfo header from the request
I have several services running iside the docker and one service is users service which does the authentication among other stuff.
I've made following configuration.
I've added kong docker container into the same network as all other services and I've added configuration into nginx.conf ( nginx is also container built from openresty/openresty:1.13.6.2-0-alpine)
now, when I make access to http://localhost:8000/api/v1/useradm/auth/ssologin I get expected result
I'm redirect to okta for authentication and after that kong redirects to my user-service with X-Userinfo
This seems as basic question but I've failed to find answer
I want to use kong for single sign on I've followed https://github.com/oktadeveloper/okta-kong-origin-example to configure kong against okta and everything works fine for this example. Based on that I wanted to "protect" access to login endpoint in my service expecting to get X-Userinfo header from the request
I have several services running iside the docker and one service is users service which does the authentication among other stuff. I've made following configuration. I've added kong docker container into the same network as all other services and I've added configuration into nginx.conf ( nginx is also container built from openresty/openresty:1.13.6.2-0-alpine)
kong configuration
this is oidc plugin configured
now, when I make access to http://localhost:8000/api/v1/useradm/auth/ssologin I get expected result I'm redirect to okta for authentication and after that kong redirects to my user-service with X-Userinfo
however when I hit http://my.server.com/api/v1/useradm/auth/ssologin I'm not getting X-Userinfo in my service endpoint
( my.server.com is resolved from hosts file )
Where did I go wrong?