Question: Use of skip auth #94

N8-I · 2023-11-02T14:45:23Z

N8-I
Nov 2, 2023

I was wondering what the use case for using the skip auth query parameters on the auth endpoint. At service level it looks scary 👻. As I understand it, this would have to be set by the ingress controller when it makes a call to the auth endpoint. I have not been able to find any documentation on how the ingress controller would make use of this parameter. I was hoping you could shed some light on it for me.

Answered by IvanJosipovic

Nov 2, 2023

Hey, thanks for the question, I definitely need to do more work on the docs :D

"At service level it looks scary 👻."

I think some of you confusion is around the overall flow. Each ingress can customize what if any endpoints skip auth or what claims are expected. This is useful for many reasons, for example, making a part of the application anonymous while protecting the rest of the app.

https://github.com/IvanJosipovic/OIDC-Guard/wiki/Endpoints#skip-auth

View full answer

IvanJosipovic · 2023-11-02T16:47:51Z

IvanJosipovic
Nov 2, 2023
Maintainer

Hey, thanks for the question, I definitely need to do more work on the docs :D

"At service level it looks scary 👻."

I think some of you confusion is around the overall flow. Each ingress can customize what if any endpoints skip auth or what claims are expected. This is useful for many reasons, for example, making a part of the application anonymous while protecting the rest of the app.

https://github.com/IvanJosipovic/OIDC-Guard/wiki/Endpoints#skip-auth

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Question: Use of skip auth #94

{{title}}

Replies: 1 comment

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Select a reply

Question: Use of skip auth #94

N8-I Nov 2, 2023

Replies: 1 comment

IvanJosipovic Nov 2, 2023 Maintainer

N8-I
Nov 2, 2023

IvanJosipovic
Nov 2, 2023
Maintainer