Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
G
G
ganqqwerty2015-04-14 13:27:41
User identification
ganqqwerty, 2015-04-14 13:27:41

Proxy to secure APIs and web applications?

We have several dozen web services with REST APIs, plus several web applications that use these APIs. There is also an OpenId Connect server (MitreId implementation). I would like to achieve the following behavior:

  1. when a user visits one of our web applications, they are redirected to the Open Id Connect authentication page. The access token must be stored in cookies, not in the Authorization header.
  2. when the user tries to use the API with e.g. curl, he must provide the correct token
  3. want to avoid modifications to our frontends and backends
  4. boxed solutions (for example, configs for apache or nginx as a proxy) are welcome

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
N
Ninazu2019-05-15 19:21:38
Mobile App Authentication in API? 1Reply
D
Daniil Yakovlev2021-01-17 13:46:20
How to do JWT authorization in NodeJs? 1Reply
O
Oleg2019-05-22 14:54:35
Is it possible to make yii1 and yii2 authorization friends with Drupal? 1Reply
M
Misha Shandra2019-06-13 19:02:03
Error with access token in Auth0? 0Reply
S
semki0962019-06-17 01:13:31
How to organize the simplest authentication for one client from his machine? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question