Interesting idea. Basically, the GK will do the dirty work for clients,
We could probably consider having this task as a subtask of
On Wed, Jun 26, 2019 at 2:05 PM <maxime.suret(a)early-birds.io> wrote:
When Keycloak Gatekeeper gets a 401 response with a permission ticket
from upstream, it would be very useful if it could fetch the
corresponding RPT and retry accessing the upstream resource with it.
The RPT would then be placed in the access cookie to avoid this process
in subsequent requests.
That would also be a nice feature to have when using gatekeeper as a
forwad signing proxy.
What do you think ? I am willing to implement this myself.
keycloak-dev mailing list