Skip to content

Commit 4c961da

Browse files
javorszkyADubhlaoichvepatel
authored
feat: Add sni related config options to jwt policy (#795)
Add sni related config options to jwt policy Co-authored-by: Alan Dooley <[email protected]> Co-authored-by: Venktesh Shivam Patel <[email protected]>
1 parent e3942f4 commit 4c961da

File tree

1 file changed

+8
-6
lines changed

1 file changed

+8
-6
lines changed

content/nic/configuration/policy-resource.md

Lines changed: 8 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -446,12 +446,14 @@ This feature is implemented using the NGINX Plus directive [auth_jwt_key_request
446446
{{< /note >}}
447447

448448
{{% table %}}
449-
|Field | Description | Type | Required |
450-
| ---| ---| ---| --- |
451-
|``jwksURI`` | The remote URI where the request will be sent to retrieve JSON Web Key set| ``string`` | Yes |
452-
|``keyCache`` | Enables in-memory caching of JWKS (JSON Web Key Sets) that are obtained from the ``jwksURI`` and sets a valid time for expiration. | ``string`` | Yes |
453-
|``realm`` | The realm of the JWT. | ``string`` | Yes |
454-
|``token`` | The token specifies a variable that contains the JSON Web Token. By default the JWT is passed in the ``Authorization`` header as a Bearer Token. JWT may be also passed as a cookie or a part of a query string, for example: ``$cookie_auth_token``. Accepted variables are ``$http_``, ``$arg_``, ``$cookie_``. | ``string`` | No |
449+
|Field | Description | Type | Required | Default |
450+
| ---| ---| ---| --- | --- |
451+
|``jwksURI`` | The remote URI where the request will be sent to retrieve JSON Web Key set| ``string`` | Yes | -- |
452+
|``keyCache`` | Enables in-memory caching of JWKS (JSON Web Key Sets) that are obtained from the ``jwksURI`` and sets a valid time for expiration. | ``string`` | Yes | -- |
453+
|``realm`` | The realm of the JWT. | ``string`` | Yes | -- |
454+
|``token`` | The token specifies a variable that contains the JSON Web Token. By default the JWT is passed in the ``Authorization`` header as a Bearer Token. JWT may be also passed as a cookie or a part of a query string, for example: ``$cookie_auth_token``. Accepted variables are ``$http_``, ``$arg_``, ``$cookie_``. | ``string`` | No | -- |
455+
|``sniEnabled`` | Enables SNI (Server Name Indication) for the JWT policy. This is useful when the remote server requires SNI to serve the correct certificate. | ``bool`` | No | `false` |
456+
|``sniName`` | The SNI name to use when connecting to the remote server. If not set, the hostname from the ``jwksURI`` will be used. | ``string`` | No | -- |
455457
{{% /table %}}
456458

457459
{{< note >}}

0 commit comments

Comments
 (0)