LumeWeb
/
skynet-webportal
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
This repository has been archived on 2022-10-07. You can view files and clone it, but cannot push or open issues or pull requests.
skynet-webportal/docker/kratos/oathkeeper/access-rules.yml

84 lines
1.8 KiB
YAML
Raw Normal View History

access rules
2020-12-15 16:22:31 +00:00
- id: "ory:kratos:public"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
upstream:
preserve_host: true
hydrator test
2021-02-09 10:22:23 +00:00
url: "http://kratos:4433"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
strip_path: /.ory/kratos/public
match:
url: "http://oathkeeper:4455/.ory/kratos/public/<**>"
methods:
- GET
- POST
- PUT
- DELETE
- PATCH
authenticators:
access rules
2020-12-15 16:22:31 +00:00
- handler: noop
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
authorizer:
handler: allow
mutators:
enable hydrator
2021-02-09 10:43:23 +00:00
- handler: noop
return to test
2021-02-11 22:06:00 +00:00
# - handler: hydrator
# config:
# api:
# url: http://dashboard:3000/api/hydrator
# - handler: cookie
# config:
# cookies:
# user: "{{ print .Subject }}"
# some-arbitrary-data: "{{ print .Extra.foo }}"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
custom frontend
2021-02-03 14:06:44 +00:00
- id: "dashboard:anonymous"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
upstream:
preserve_host: true
custom frontend
2021-02-03 14:06:44 +00:00
url: "http://dashboard:3000"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
match:
recovery
2021-02-05 11:46:18 +00:00
url: "http://oathkeeper:4455/<{error,recovery,verify,auth/*,**.css,**.js}{/,}>"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
methods:
- GET
authenticators:
access rules
2020-12-15 16:22:31 +00:00
- handler: anonymous
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
authorizer:
handler: allow
mutators:
access rules
2020-12-15 16:22:31 +00:00
- handler: noop
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
custom frontend
2021-02-03 14:06:44 +00:00
- id: "dashboard:protected"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
upstream:
preserve_host: true
custom frontend
2021-02-03 14:06:44 +00:00
url: "http://dashboard:3000"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
match:
test
2021-02-15 00:12:38 +00:00
url: "http://oathkeeper:4455/<{,uploads,downloads,payments,api,api/*}>"
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
methods:
- GET
test
2021-02-15 00:07:53 +00:00
- POST
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
authenticators:
access rules
2020-12-15 16:22:31 +00:00
- handler: cookie_session
Add Oathkeeper (broken SSL on login)
2020-12-09 12:50:17 +00:00
authorizer:
handler: allow
mutators:
- handler: id_token
errors:
- handler: redirect
config:
use secure subdomain
2020-12-16 12:08:51 +00:00
to: http://127.0.0.1/auth/login
Revert "use secure subdomain" This reverts commit d8003fdd85f37049ac2c7074495f180f2fcfa1b5.
2020-12-15 15:29:30 +00:00
access rules
2020-12-15 16:22:31 +00:00
- id: "accounts"
upstream:
preserve_host: true
url: "http://accounts:3000"
match:
add login and logout accounts routes
2021-02-12 12:43:58 +00:00
url: "http://oathkeeper<{,:4455}>/<{user,user/**,login,logout}>"
fix matcher
2020-12-15 16:34:07 +00:00
methods:
- GET
test
2021-02-15 00:12:38 +00:00
- POST
access rules
2020-12-15 16:22:31 +00:00
authenticators:
- handler: cookie_session
authorizer:
handler: allow
mutators:
- handler: id_token
errors:
redirect to login if logged out
2021-02-11 17:54:13 +00:00
- handler: redirect
config:
to: http://127.0.0.1/auth/login