public_git
/
oauth2-proxy
mirror of https://github.com/oauth2-proxy/oauth2-proxy.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Update documentation based on 225dc92adf

This commit is contained in:
github-actions[bot] 2023-09-13 11:01:58 +00:00
parent d548a00fca
commit d8fe89c310
276 changed files with 1323 additions and 1326 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
404.html
View File

File diff suppressed because one or more lines are too long

1
assets/css/styles.19258e03.css
View File

File diff suppressed because one or more lines are too long

1
assets/css/styles.5c990d8a.css Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/001ca130.df12b21c.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/001ca130.ea995613.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/00691219.1534c076.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/00691219.aa22e2bc.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/03a491a5.11982042.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[2506],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return h}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var s=n.createContext({}),c=function(e){var t=n.useContext(s),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=c(e.components);return n.createElement(s.Provider,{value:t},e.children)},l="mdxType",d={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},f=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,s=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),l=c(r),f=o,h=l["".concat(s,".").concat(f)]||l[f]||d[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function h(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=f;var u={};for(var s in t)hasOwnProperty.call(t,s)&&(u[s]=t[s]);u.originalType=e,u[l]="string"==typeof e?e:o,a[1]=u;for(var c=2;c<i;c++)a[c]=r[c];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}f.displayName="MDXCreateElement"},128:function(e,t,r){r.r(t),r.d(t,{assets:function(){return p},contentTitle:function(){return s},default:function(){return h},frontMatter:function(){return u},metadata:function(){return c},toc:function(){return l}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},s=void 0,c={unversionedId:"behaviour",id:"version-7.4.x/behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/versioned_docs/version-7.4.x/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/7.4.x/behaviour",draft:!1,editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/versioned_docs/version-7.4.x/behaviour.md",tags:[],version:"7.4.x",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/7.4.x/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/7.4.x/configuration/overview"}},p={},l=[],d={toc:l},f="wrapper";function h(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)(f,(0,n.Z)({},d,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/7.4.x/features/endpoints"},"endpoints"),"."))}h.isMDXComponent=!0}}]);

1
assets/js/03a491a5.8596696f.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[2506],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return f}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var s=n.createContext({}),c=function(e){var t=n.useContext(s),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=c(e.components);return n.createElement(s.Provider,{value:t},e.children)},l={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},d=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,s=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),d=c(r),f=o,h=d["".concat(s,".").concat(f)]||d[f]||l[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function f(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=d;var u={};for(var s in t)hasOwnProperty.call(t,s)&&(u[s]=t[s]);u.originalType=e,u.mdxType="string"==typeof e?e:o,a[1]=u;for(var c=2;c<i;c++)a[c]=r[c];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}d.displayName="MDXCreateElement"},128:function(e,t,r){r.r(t),r.d(t,{frontMatter:function(){return u},contentTitle:function(){return s},metadata:function(){return c},toc:function(){return p},default:function(){return d}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},s=void 0,c={unversionedId:"behaviour",id:"version-7.4.x/behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/versioned_docs/version-7.4.x/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/7.4.x/behaviour",editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/versioned_docs/version-7.4.x/behaviour.md",tags:[],version:"7.4.x",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/7.4.x/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/7.4.x/configuration/overview"}},p=[],l={toc:p};function d(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)("wrapper",(0,n.Z)({},l,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/7.4.x/features/endpoints"},"endpoints"),"."))}d.isMDXComponent=!0}}]);

1
assets/js/0721a2c0.ea46b094.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/0721a2c0.ffdc7189.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/08659987.641218f9.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/08659987.7dcc30c9.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/0f425520.3de858f9.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/0f425520.417bf0b1.js
View File

File diff suppressed because one or more lines are too long

2
assets/js/5dfb0b41.82243d0a.js → assets/js/121b3f12.1d2ff384.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/121b3f12.1dbcc0b5.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/15098498.cefb25bc.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[8676],{2776:function(s){s.exports=JSON.parse('{"name":"@easyops-cn/docusaurus-search-local","id":"default"}')}}]);

1
assets/js/1737cda1.3fa3c755.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/1737cda1.6c512bce.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/17896441.7245005b.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/17896441.b571fd1c.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/1999cd7b.3ecd00cf.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/1999cd7b.67af2e9d.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/1a4e3797.47f2376f.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[7920],{2027:function(e,t,r){r.r(t),r.d(t,{default:function(){return _}});var n=r(4165),a=r(5861),l=r(7294),u=r(2263),s=r(179),c=r(5742),o=r(9960),m=r(5999),i=r(373),h=["zero","one","two","few","many","other"];function p(e){return h.filter((function(t){return e.includes(t)}))}var f={locale:"en",pluralForms:p(["one","other"]),select:function(e){return 1===e?"one":"other"}};function d(){var e=(0,u.Z)().i18n.currentLocale;return(0,l.useMemo)((function(){try{return t=e,r=new Intl.PluralRules(t),{locale:t,pluralForms:p(r.resolvedOptions().pluralCategories),select:function(e){return r.select(e)}}}catch(n){return console.error('Failed to use Intl.PluralRules for locale "'+e+'".\nDocusaurus will fallback to the default (English) implementation.\nError: '+n.message+"\n"),f}var t,r}),[e])}function g(){var e=d();return{selectMessage:function(t,r){return function(e,t,r){var n=e.split("|");if(1===n.length)return n[0];n.length>r.pluralForms.length&&console.error("For locale="+r.locale+", a maximum of "+r.pluralForms.length+" plural forms are expected ("+r.pluralForms.join(",")+"), but the message contains "+n.length+": "+e);var a=r.select(t),l=r.pluralForms.indexOf(a);return n[Math.min(l,n.length-1)]}(r,t,e)}}}var v=r(143),y=r(6550),E=r(412);var I=function(){var e=(0,y.k6)(),t=(0,y.TH)(),r=(0,u.Z)().siteConfig.baseUrl;return{searchValue:E.Z.canUseDOM&&new URLSearchParams(t.search).get("q")||"",updateSearchPath:function(r){var n=new URLSearchParams(t.search);r?n.set("q",r):n.delete("q"),e.replace({search:n.toString()})},generateSearchPageLink:function(e){return r+"search?q="+encodeURIComponent(e)}}},S=r(22),R=r(8202),w=r(2539),P=r(726),b=r(1073),F=r(311),k={searchQueryInput:"searchQueryInput_CFBF",searchResultItem:"searchResultItem_U687",searchResultItemPath:"searchResultItemPath_uIbk",searchResultItemSummary:"searchResultItemSummary_oZHr"},Z=r(3926);function C(){var e=(0,u.Z)().siteConfig.baseUrl,t=(0,v.gA)(),r=e,s=(0,i.J)(null==t?void 0:t.pluginId).preferredVersion;s&&!s.isLast&&(r=s.path+"/");var o=g().selectMessage,h=I(),p=h.searchValue,f=h.updateSearchPath,d=(0,l.useState)(p),y=d[0],E=d[1],w=(0,l.useState)(),P=w[0],b=w[1],Z=(0,l.useState)(),C=Z[0],_=Z[1],q=(0,l.useMemo)((function(){return y?(0,m.I)({id:"theme.SearchPage.existingResultsTitle",message:'Search results for "{query}"',description:"The search page title for non-empty query"},{query:y}):(0,m.I)({id:"theme.SearchPage.emptyResultsTitle",message:"Search the documentation",description:"The search page title for empty query"})}),[y]);(0,l.useEffect)((function(){f(y),P&&(y?P(y,(function(e){_(e)})):_(void 0))}),[y,P]);var T=(0,l.useCallback)((function(e){E(e.target.value)}),[]);return(0,l.useEffect)((function(){p&&p!==y&&E(p)}),[p]),(0,l.useEffect)((function(){var e;!function(){(e=e||(0,a.Z)((0,n.Z)().mark((function e(){var t,a,l;return(0,n.Z)().wrap((function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,(0,S.w)(r);case 2:t=e.sent,a=t.wrappedIndexes,l=t.zhDictionary,b((function(){return(0,R.v)(a,l,100)}));case 6:case"end":return e.stop()}}),e)})))).apply(this,arguments)}()}),[r]),l.createElement(l.Fragment,null,l.createElement(c.Z,null,l.createElement("meta",{property:"robots",content:"noindex, follow"}),l.createElement("title",null,q)),l.createElement("div",{className:"container margin-vert--lg"},l.createElement("h1",null,q),l.createElement("input",{type:"search",name:"q",className:k.searchQueryInput,"aria-label":"Search",onChange:T,value:y,autoComplete:"off",autoFocus:!0}),!P&&y&&l.createElement("div",null,l.createElement(F.Z,null)),C&&(C.length>0?l.createElement("p",null,o(C.length,(0,m.I)({id:"theme.SearchPage.documentsFound.plurals",message:"1 document found|{count} documents found",description:'Pluralized label for "{count} documents found". Use as much plural forms (separated by "|") as your language support (see https://www.unicode.org/cldr/cldr-aux/charts/34/supplemental/language_plural_rules.html)'},{count:C.length}))):l.createElement("p",null,(0,m.I)({id:"theme.SearchPage.noResultsText",message:"No documents were found",description:"The paragraph for empty search result"}))),l.createElement("section",null,C&&C.map((function(e){return l.createElement(x,{key:e.document.i,searchResult:e})})))))}function x(e){var t=e.searchResult,r=t.document,n=t.type,a=t.page,u=t.tokens,s=t.metadata,c=0===n,m=2===n,i=(c?r.b:a.b).slice(),h=m?r.s:r.t;return c||i.push(a.t),l.createElement("article",{className:k.searchResultItem},l.createElement("h2",null,l.createElement(o.Z,{to:r.u+(r.h||""),dangerouslySetInnerHTML:{__html:m?(0,w.C)(h,u):(0,P.o)(h,(0,b.m)(s,"t"),u,100)}})),i.length>0&&l.createElement("p",{className:k.searchResultItemPath},(0,Z.e)(i)),m&&l.createElement("p",{className:k.searchResultItemSummary,dangerouslySetInnerHTML:{__html:(0,P.o)(r.t,(0,b.m)(s,"t"),u,100)}}))}var _=function(){return l.createElement(s.Z,null,l.createElement(C,null))}}}]);

1
assets/js/1be78505.1971bfb9.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/1be78505.7b2cd06e.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/1f391b9e.9c591920.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[3085],{4247:function(e,a,t){t.r(a),t.d(a,{default:function(){return d}});var l=t(7294),n=t(6010),r=t(1944),c=t(5281),m=t(179),i=t(652),s=t(9407),o={mdxPageWrapper:"mdxPageWrapper_j9I6"};function d(e){var a=e.content,t=a.metadata,d=t.title,u=t.description,p=t.frontMatter,g=p.wrapperClassName,E=p.hide_table_of_contents;return l.createElement(r.FG,{className:(0,n.Z)(null!=g?g:c.k.wrapper.mdxPages,c.k.page.mdxPage)},l.createElement(r.d,{title:d,description:u}),l.createElement(m.Z,null,l.createElement("main",{className:"container container--fluid margin-vert--lg"},l.createElement("div",{className:(0,n.Z)("row",o.mdxPageWrapper)},l.createElement("div",{className:(0,n.Z)("col",!E&&"col--8")},l.createElement("article",null,l.createElement(i.Z,null,l.createElement(a,null)))),!E&&a.toc.length>0&&l.createElement("div",{className:"col col--2"},l.createElement(s.Z,{toc:a.toc,minHeadingLevel:p.toc_min_heading_level,maxHeadingLevel:p.toc_max_heading_level}))))))}}}]);

1
assets/js/1f391b9e.e29f8c90.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[3085],{6416:function(e,a,n){n.r(a),n.d(a,{default:function(){return d}});var t=n(7294),l=n(6010),i=n(2434),s=n(3905),c=n(4689),r=n(1575),m=n(9548),o="mdxPageWrapper_zHyg";var d=function(e){var a=e.content,n=a.metadata,d=n.title,u=n.description,v=n.permalink,f=n.frontMatter,N=f.wrapperClassName,g=f.hide_table_of_contents;return t.createElement(i.Z,{title:d,description:u,permalink:v,wrapperClassName:null!=N?N:m.kM.wrapper.mdxPages,pageClassName:m.kM.page.mdxPage},t.createElement("main",{className:"container container--fluid margin-vert--lg"},t.createElement("div",{className:(0,l.Z)("row",o)},t.createElement("div",{className:(0,l.Z)("col",!g&&"col--8")},t.createElement(s.Zo,{components:c.Z},t.createElement(a,null))),!g&&a.toc&&t.createElement("div",{className:"col col--2"},t.createElement(r.Z,{toc:a.toc,minHeadingLevel:f.toc_min_heading_level,maxHeadingLevel:f.toc_max_heading_level})))))}},1575:function(e,a,n){n.d(a,{Z:function(){return o}});var t=n(7462),l=n(3366),i=n(7294),s=n(6010),c=n(5002),r="tableOfContents_cNA8",m=["className"];var o=function(e){var a=e.className,n=(0,l.Z)(e,m);return i.createElement("div",{className:(0,s.Z)(r,"thin-scrollbar",a)},i.createElement(c.Z,(0,t.Z)({},n,{linkClassName:"table-of-contents__link toc-highlight",linkActiveClassName:"table-of-contents__link--active"})))}},5002:function(e,a,n){n.d(a,{Z:function(){return m}});var t=n(7462),l=n(3366),i=n(7294),s=n(9548),c=["toc","className","linkClassName","linkActiveClassName","minHeadingLevel","maxHeadingLevel"];function r(e){var a=e.toc,n=e.className,t=e.linkClassName,l=e.isChild;return a.length?i.createElement("ul",{className:l?void 0:n},a.map((function(e){return i.createElement("li",{key:e.id},i.createElement("a",{href:"#"+e.id,className:null!=t?t:void 0,dangerouslySetInnerHTML:{__html:e.value}}),i.createElement(r,{isChild:!0,toc:e.children,className:n,linkClassName:t}))}))):null}function m(e){var a=e.toc,n=e.className,m=void 0===n?"table-of-contents table-of-contents__left-border":n,o=e.linkClassName,d=void 0===o?"table-of-contents__link":o,u=e.linkActiveClassName,v=void 0===u?void 0:u,f=e.minHeadingLevel,N=e.maxHeadingLevel,g=(0,l.Z)(e,c),k=(0,s.LU)(),C=null!=f?f:k.tableOfContents.minHeadingLevel,_=null!=N?N:k.tableOfContents.maxHeadingLevel,p=(0,s.DA)({toc:a,minHeadingLevel:C,maxHeadingLevel:_}),h=(0,i.useMemo)((function(){if(d&&v)return{linkClassName:d,linkActiveClassName:v,minHeadingLevel:C,maxHeadingLevel:_}}),[d,v,C,_]);return(0,s.Si)(h),i.createElement(r,(0,t.Z)({toc:p,className:m,linkClassName:d},g))}}}]);

1
assets/js/230aeb34.7834131c.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[3291],{7765:function(e){e.exports=JSON.parse('{"pluginId":"default","version":"7.0.x","label":"7.0.x","banner":"unmaintained","badge":true,"noIndex":false,"className":"docs-version-7.0.x","isLast":false,"docsSidebars":{"version-7.0.x/docs":[{"type":"link","label":"Installation","href":"/oauth2-proxy/docs/7.0.x/","docId":"installation"},{"type":"link","label":"Behaviour","href":"/oauth2-proxy/docs/7.0.x/behaviour","docId":"behaviour"},{"collapsed":false,"type":"category","label":"Configuration","items":[{"type":"link","label":"Overview","href":"/oauth2-proxy/docs/7.0.x/configuration/overview","docId":"configuration/overview"},{"type":"link","label":"OAuth Provider Configuration","href":"/oauth2-proxy/docs/7.0.x/configuration/oauth_provider","docId":"configuration/oauth_provider"},{"type":"link","label":"Session Storage","href":"/oauth2-proxy/docs/7.0.x/configuration/session_storage","docId":"configuration/session_storage"},{"type":"link","label":"TLS Configuration","href":"/oauth2-proxy/docs/7.0.x/configuration/tls","docId":"configuration/tls"},{"type":"link","label":"Alpha Configuration","href":"/oauth2-proxy/docs/7.0.x/configuration/alpha-config","docId":"configuration/alpha-config"}],"collapsible":true},{"collapsed":false,"type":"category","label":"Features","items":[{"type":"link","label":"Endpoints","href":"/oauth2-proxy/docs/7.0.x/features/endpoints","docId":"features/endpoints"},{"type":"link","label":"Request Signatures","href":"/oauth2-proxy/docs/7.0.x/features/request_signatures","docId":"features/request_signatures"}],"collapsible":true},{"collapsed":false,"type":"category","label":"Community","items":[{"type":"link","label":"Security","href":"/oauth2-proxy/docs/7.0.x/community/security","docId":"community/security"}],"collapsible":true}]},"docs":{"behaviour":{"id":"behaviour","title":"Behaviour","description":"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy\'s session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).","sidebar":"version-7.0.x/docs"},"community/security":{"id":"community/security","title":"Security","description":"OAuth2 Proxy is a community project.","sidebar":"version-7.0.x/docs"},"configuration/alpha-config":{"id":"configuration/alpha-config","title":"Alpha Configuration","description":"This page contains documentation for alpha features.","sidebar":"version-7.0.x/docs"},"configuration/oauth_provider":{"id":"configuration/oauth_provider","title":"OAuth Provider Configuration","description":"You will need to register an OAuth application with a Provider (Google, GitHub or another provider), and configure it with Redirect URI(s) for the domain you intend to run oauth2-proxy on.","sidebar":"version-7.0.x/docs"},"configuration/overview":{"id":"configuration/overview","title":"Overview","description":"oauth2-proxy can be configured via command line options, environment variables or config file (in decreasing order of precedence, i.e. command line options will overwrite environment variables and environment variables will overwrite configuration file settings).","sidebar":"version-7.0.x/docs"},"configuration/session_storage":{"id":"configuration/session_storage","title":"Session Storage","description":"Sessions allow a user\'s authentication to be tracked between multiple HTTP","sidebar":"version-7.0.x/docs"},"configuration/tls":{"id":"configuration/tls","title":"TLS Configuration","description":"There are two recommended configurations.","sidebar":"version-7.0.x/docs"},"features/endpoints":{"id":"features/endpoints","title":"Endpoints","description":"OAuth2 Proxy responds directly to the following endpoints. All other endpoints will be proxied upstream when authenticated. The /oauth2 prefix can be changed with the --proxy-prefix config variable.","sidebar":"version-7.0.x/docs"},"features/request_signatures":{"id":"features/request_signatures","title":"Request Signatures","description":"If signature_key is defined, proxied requests will be signed with the","sidebar":"version-7.0.x/docs"},"installation":{"id":"installation","title":"Installation","description":"1. Choose how to deploy:","sidebar":"version-7.0.x/docs"}}}')}}]);

1
assets/js/230aeb34.9e93a797.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[3291],{7765:function(e){e.exports=JSON.parse('{"pluginId":"default","version":"7.0.x","label":"7.0.x","banner":"unmaintained","badge":true,"className":"docs-version-7.0.x","isLast":false,"docsSidebars":{"version-7.0.x/docs":[{"type":"link","label":"Installation","href":"/oauth2-proxy/docs/7.0.x/","docId":"installation"},{"type":"link","label":"Behaviour","href":"/oauth2-proxy/docs/7.0.x/behaviour","docId":"behaviour"},{"collapsed":false,"type":"category","label":"Configuration","items":[{"type":"link","label":"Overview","href":"/oauth2-proxy/docs/7.0.x/configuration/overview","docId":"configuration/overview"},{"type":"link","label":"OAuth Provider Configuration","href":"/oauth2-proxy/docs/7.0.x/configuration/oauth_provider","docId":"configuration/oauth_provider"},{"type":"link","label":"Session Storage","href":"/oauth2-proxy/docs/7.0.x/configuration/session_storage","docId":"configuration/session_storage"},{"type":"link","label":"TLS Configuration","href":"/oauth2-proxy/docs/7.0.x/configuration/tls","docId":"configuration/tls"},{"type":"link","label":"Alpha Configuration","href":"/oauth2-proxy/docs/7.0.x/configuration/alpha-config","docId":"configuration/alpha-config"}],"collapsible":true},{"collapsed":false,"type":"category","label":"Features","items":[{"type":"link","label":"Endpoints","href":"/oauth2-proxy/docs/7.0.x/features/endpoints","docId":"features/endpoints"},{"type":"link","label":"Request Signatures","href":"/oauth2-proxy/docs/7.0.x/features/request_signatures","docId":"features/request_signatures"}],"collapsible":true},{"collapsed":false,"type":"category","label":"Community","items":[{"type":"link","label":"Security","href":"/oauth2-proxy/docs/7.0.x/community/security","docId":"community/security"}],"collapsible":true}]},"docs":{"behaviour":{"id":"behaviour","title":"Behaviour","description":"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy\'s session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).","sidebar":"version-7.0.x/docs"},"community/security":{"id":"community/security","title":"Security","description":"OAuth2 Proxy is a community project.","sidebar":"version-7.0.x/docs"},"configuration/alpha-config":{"id":"configuration/alpha-config","title":"Alpha Configuration","description":"This page contains documentation for alpha features.","sidebar":"version-7.0.x/docs"},"configuration/oauth_provider":{"id":"configuration/oauth_provider","title":"OAuth Provider Configuration","description":"You will need to register an OAuth application with a Provider (Google, GitHub or another provider), and configure it with Redirect URI(s) for the domain you intend to run oauth2-proxy on.","sidebar":"version-7.0.x/docs"},"configuration/overview":{"id":"configuration/overview","title":"Overview","description":"oauth2-proxy can be configured via command line options, environment variables or config file (in decreasing order of precedence, i.e. command line options will overwrite environment variables and environment variables will overwrite configuration file settings).","sidebar":"version-7.0.x/docs"},"configuration/session_storage":{"id":"configuration/session_storage","title":"Session Storage","description":"Sessions allow a user\'s authentication to be tracked between multiple HTTP","sidebar":"version-7.0.x/docs"},"configuration/tls":{"id":"configuration/tls","title":"TLS Configuration","description":"There are two recommended configurations.","sidebar":"version-7.0.x/docs"},"features/endpoints":{"id":"features/endpoints","title":"Endpoints","description":"OAuth2 Proxy responds directly to the following endpoints. All other endpoints will be proxied upstream when authenticated. The /oauth2 prefix can be changed with the --proxy-prefix config variable.","sidebar":"version-7.0.x/docs"},"features/request_signatures":{"id":"features/request_signatures","title":"Request Signatures","description":"If signature_key is defined, proxied requests will be signed with the","sidebar":"version-7.0.x/docs"},"installation":{"id":"installation","title":"Installation","description":"1. Choose how to deploy:","sidebar":"version-7.0.x/docs"}}}')}}]);

1
assets/js/243cbd97.547fc342.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/243cbd97.ae844494.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/2c77072c.792c4871.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/2c77072c.e9ddc94f.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/300a9996.2e30b5d6.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/300a9996.f753e41d.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/35234f08.48c6f914.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/35234f08.75b00d70.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/357fe94d.359c0bb1.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/357fe94d.ad17b3f1.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/3b8c55ea.100917d7.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/3b8c55ea.7493271c.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/3b8e2d60.3395ef0b.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/3b8e2d60.7229dec3.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/3def9002.0566d6b8.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/3def9002.826b0f33.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/3fa022c7.64772e2e.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/3fa022c7.d245265c.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/41de83de.41ba64ac.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[7250],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return f}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var s=n.createContext({}),c=function(e){var t=n.useContext(s),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=c(e.components);return n.createElement(s.Provider,{value:t},e.children)},l={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},d=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,s=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),d=c(r),f=o,h=d["".concat(s,".").concat(f)]||d[f]||l[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function f(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=d;var u={};for(var s in t)hasOwnProperty.call(t,s)&&(u[s]=t[s]);u.originalType=e,u.mdxType="string"==typeof e?e:o,a[1]=u;for(var c=2;c<i;c++)a[c]=r[c];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}d.displayName="MDXCreateElement"},6239:function(e,t,r){r.r(t),r.d(t,{frontMatter:function(){return u},contentTitle:function(){return s},metadata:function(){return c},toc:function(){return p},default:function(){return d}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},s=void 0,c={unversionedId:"behaviour",id:"version-7.1.x/behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/versioned_docs/version-7.1.x/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/7.1.x/behaviour",editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/versioned_docs/version-7.1.x/behaviour.md",tags:[],version:"7.1.x",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"version-7.1.x/docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/7.1.x/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/7.1.x/configuration/overview"}},p=[],l={toc:p};function d(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)("wrapper",(0,n.Z)({},l,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/7.1.x/features/endpoints"},"endpoints"),"."))}d.isMDXComponent=!0}}]);

1
assets/js/41de83de.631a4066.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[7250],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return h}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var s=n.createContext({}),c=function(e){var t=n.useContext(s),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=c(e.components);return n.createElement(s.Provider,{value:t},e.children)},l="mdxType",d={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},f=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,s=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),l=c(r),f=o,h=l["".concat(s,".").concat(f)]||l[f]||d[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function h(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=f;var u={};for(var s in t)hasOwnProperty.call(t,s)&&(u[s]=t[s]);u.originalType=e,u[l]="string"==typeof e?e:o,a[1]=u;for(var c=2;c<i;c++)a[c]=r[c];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}f.displayName="MDXCreateElement"},6239:function(e,t,r){r.r(t),r.d(t,{assets:function(){return p},contentTitle:function(){return s},default:function(){return h},frontMatter:function(){return u},metadata:function(){return c},toc:function(){return l}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},s=void 0,c={unversionedId:"behaviour",id:"version-7.1.x/behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/versioned_docs/version-7.1.x/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/7.1.x/behaviour",draft:!1,editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/versioned_docs/version-7.1.x/behaviour.md",tags:[],version:"7.1.x",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"version-7.1.x/docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/7.1.x/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/7.1.x/configuration/overview"}},p={},l=[],d={toc:l},f="wrapper";function h(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)(f,(0,n.Z)({},d,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/7.1.x/features/endpoints"},"endpoints"),"."))}h.isMDXComponent=!0}}]);

1
assets/js/42326c77.8e971b20.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[7595],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return f}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var s=n.createContext({}),c=function(e){var t=n.useContext(s),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=c(e.components);return n.createElement(s.Provider,{value:t},e.children)},l={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},d=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,s=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),d=c(r),f=o,h=d["".concat(s,".").concat(f)]||d[f]||l[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function f(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=d;var u={};for(var s in t)hasOwnProperty.call(t,s)&&(u[s]=t[s]);u.originalType=e,u.mdxType="string"==typeof e?e:o,a[1]=u;for(var c=2;c<i;c++)a[c]=r[c];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}d.displayName="MDXCreateElement"},7327:function(e,t,r){r.r(t),r.d(t,{frontMatter:function(){return u},contentTitle:function(){return s},metadata:function(){return c},toc:function(){return p},default:function(){return d}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},s=void 0,c={unversionedId:"behaviour",id:"version-6.1.x/behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/versioned_docs/version-6.1.x/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/6.1.x/behaviour",editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/versioned_docs/version-6.1.x/behaviour.md",tags:[],version:"6.1.x",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"version-6.1.x/docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/6.1.x/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/6.1.x/configuration/overview"}},p=[],l={toc:p};function d(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)("wrapper",(0,n.Z)({},l,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/6.1.x/features/endpoints"},"endpoints"),"."))}d.isMDXComponent=!0}}]);

1
assets/js/42326c77.e5ce8b4a.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[7595],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return h}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var s=n.createContext({}),c=function(e){var t=n.useContext(s),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=c(e.components);return n.createElement(s.Provider,{value:t},e.children)},l="mdxType",d={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},f=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,s=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),l=c(r),f=o,h=l["".concat(s,".").concat(f)]||l[f]||d[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function h(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=f;var u={};for(var s in t)hasOwnProperty.call(t,s)&&(u[s]=t[s]);u.originalType=e,u[l]="string"==typeof e?e:o,a[1]=u;for(var c=2;c<i;c++)a[c]=r[c];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}f.displayName="MDXCreateElement"},7327:function(e,t,r){r.r(t),r.d(t,{assets:function(){return p},contentTitle:function(){return s},default:function(){return h},frontMatter:function(){return u},metadata:function(){return c},toc:function(){return l}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},s=void 0,c={unversionedId:"behaviour",id:"version-6.1.x/behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/versioned_docs/version-6.1.x/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/6.1.x/behaviour",draft:!1,editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/versioned_docs/version-6.1.x/behaviour.md",tags:[],version:"6.1.x",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"version-6.1.x/docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/6.1.x/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/6.1.x/configuration/overview"}},p={},l=[],d={toc:l},f="wrapper";function h(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)(f,(0,n.Z)({},d,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/6.1.x/features/endpoints"},"endpoints"),"."))}h.isMDXComponent=!0}}]);

1
assets/js/452b66d6.4429e7a1.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/452b66d6.7b319d26.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/4608.2c7b7ade.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[4608],{4608:function(e,t,a){a.r(t);var n=a(7294),o=a(2434),l=a(5999);t.default=function(){return n.createElement(o.Z,{title:(0,l.I)({id:"theme.NotFound.title",message:"Page Not Found"})},n.createElement("main",{className:"container margin-vert--xl"},n.createElement("div",{className:"row"},n.createElement("div",{className:"col col--6 col--offset-3"},n.createElement("h1",{className:"hero__title"},n.createElement(l.Z,{id:"theme.NotFound.title",description:"The title of the 404 page"},"Page Not Found")),n.createElement("p",null,n.createElement(l.Z,{id:"theme.NotFound.p1",description:"The first paragraph of the 404 page"},"We could not find what you were looking for.")),n.createElement("p",null,n.createElement(l.Z,{id:"theme.NotFound.p2",description:"The 2nd paragraph of the 404 page"},"Please contact the owner of the site that linked you to the original URL and let them know their link is broken."))))))}}}]);

1
assets/js/4922efd5.0d61057c.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/4922efd5.61168aee.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/4972.db9d8288.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[4972],{4972:function(e,t,n){n.r(t),n.d(t,{default:function(){return c}});var a=n(7294),o=n(5999),l=n(1944),r=n(179);function c(){return a.createElement(a.Fragment,null,a.createElement(l.d,{title:(0,o.I)({id:"theme.NotFound.title",message:"Page Not Found"})}),a.createElement(r.Z,null,a.createElement("main",{className:"container margin-vert--xl"},a.createElement("div",{className:"row"},a.createElement("div",{className:"col col--6 col--offset-3"},a.createElement("h1",{className:"hero__title"},a.createElement(o.Z,{id:"theme.NotFound.title",description:"The title of the 404 page"},"Page Not Found")),a.createElement("p",null,a.createElement(o.Z,{id:"theme.NotFound.p1",description:"The first paragraph of the 404 page"},"We could not find what you were looking for.")),a.createElement("p",null,a.createElement(o.Z,{id:"theme.NotFound.p2",description:"The 2nd paragraph of the 404 page"},"Please contact the owner of the site that linked you to the original URL and let them know their link is broken.")))))))}}}]);

1
assets/js/4ae90ba0.6207ed77.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/4ae90ba0.cebae3e6.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/5525.1a6f6533.js Normal file
View File

@ -0,0 +1 @@
(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[5525],{5525:function(){}}]);

1
assets/js/567d20e7.6caf8101.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[5367],{7834:function(o){o.exports=JSON.parse('{"pluginId":"default","version":"7.5.x","label":"7.5.x","banner":null,"badge":true,"noIndex":false,"className":"docs-version-7.5.x","isLast":true,"docsSidebars":{"docs":[{"type":"link","label":"Installation","href":"/oauth2-proxy/docs/","docId":"installation"},{"type":"link","label":"Behaviour","href":"/oauth2-proxy/docs/behaviour","docId":"behaviour"},{"type":"category","label":"Configuration","collapsed":false,"items":[{"type":"link","label":"Overview","href":"/oauth2-proxy/docs/configuration/overview","docId":"configuration/overview"},{"type":"link","label":"OAuth Provider Configuration","href":"/oauth2-proxy/docs/configuration/oauth_provider","docId":"configuration/oauth_provider"},{"type":"link","label":"Session Storage","href":"/oauth2-proxy/docs/configuration/session_storage","docId":"configuration/session_storage"},{"type":"link","label":"TLS Configuration","href":"/oauth2-proxy/docs/configuration/tls","docId":"configuration/tls"},{"type":"link","label":"Alpha Configuration","href":"/oauth2-proxy/docs/configuration/alpha-config","docId":"configuration/alpha-config"}],"collapsible":true},{"type":"category","label":"Features","collapsed":false,"items":[{"type":"link","label":"Endpoints","href":"/oauth2-proxy/docs/features/endpoints","docId":"features/endpoints"}],"collapsible":true},{"type":"category","label":"Community","collapsed":false,"items":[{"type":"link","label":"Security","href":"/oauth2-proxy/docs/community/security","docId":"community/security"}],"collapsible":true}]},"docs":{"behaviour":{"id":"behaviour","title":"Behaviour","description":"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy\'s session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).","sidebar":"docs"},"community/security":{"id":"community/security","title":"Security","description":"OAuth2 Proxy is a community project.","sidebar":"docs"},"configuration/alpha-config":{"id":"configuration/alpha-config","title":"Alpha Configuration","description":"This page contains documentation for alpha features.","sidebar":"docs"},"configuration/oauth_provider":{"id":"configuration/oauth_provider","title":"OAuth Provider Configuration","description":"You will need to register an OAuth application with a Provider (Google, GitHub or another provider), and configure it with Redirect URI(s) for the domain you intend to run oauth2-proxy on.","sidebar":"docs"},"configuration/overview":{"id":"configuration/overview","title":"Overview","description":"oauth2-proxy can be configured via command line options, environment variables or config file (in decreasing order of precedence, i.e. command line options will overwrite environment variables and environment variables will overwrite configuration file settings).","sidebar":"docs"},"configuration/session_storage":{"id":"configuration/session_storage","title":"Session Storage","description":"Sessions allow a user\'s authentication to be tracked between multiple HTTP","sidebar":"docs"},"configuration/tls":{"id":"configuration/tls","title":"TLS Configuration","description":"There are two recommended configurations:","sidebar":"docs"},"features/endpoints":{"id":"features/endpoints","title":"Endpoints","description":"OAuth2 Proxy responds directly to the following endpoints. All other endpoints will be proxied upstream when authenticated. The /oauth2 prefix can be changed with the --proxy-prefix config variable.","sidebar":"docs"},"installation":{"id":"installation","title":"Installation","description":"1. Choose how to deploy:","sidebar":"docs"}}}')}}]);

1
assets/js/567d20e7.e795b7e6.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[5367],{7834:function(o){o.exports=JSON.parse('{"pluginId":"default","version":"7.5.x","label":"7.5.x","banner":null,"badge":true,"className":"docs-version-7.5.x","isLast":true,"docsSidebars":{"docs":[{"type":"link","label":"Installation","href":"/oauth2-proxy/docs/","docId":"installation"},{"type":"link","label":"Behaviour","href":"/oauth2-proxy/docs/behaviour","docId":"behaviour"},{"type":"category","label":"Configuration","collapsed":false,"items":[{"type":"link","label":"Overview","href":"/oauth2-proxy/docs/configuration/overview","docId":"configuration/overview"},{"type":"link","label":"OAuth Provider Configuration","href":"/oauth2-proxy/docs/configuration/oauth_provider","docId":"configuration/oauth_provider"},{"type":"link","label":"Session Storage","href":"/oauth2-proxy/docs/configuration/session_storage","docId":"configuration/session_storage"},{"type":"link","label":"TLS Configuration","href":"/oauth2-proxy/docs/configuration/tls","docId":"configuration/tls"},{"type":"link","label":"Alpha Configuration","href":"/oauth2-proxy/docs/configuration/alpha-config","docId":"configuration/alpha-config"}],"collapsible":true},{"type":"category","label":"Features","collapsed":false,"items":[{"type":"link","label":"Endpoints","href":"/oauth2-proxy/docs/features/endpoints","docId":"features/endpoints"}],"collapsible":true},{"type":"category","label":"Community","collapsed":false,"items":[{"type":"link","label":"Security","href":"/oauth2-proxy/docs/community/security","docId":"community/security"}],"collapsible":true}]},"docs":{"behaviour":{"id":"behaviour","title":"Behaviour","description":"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy\'s session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).","sidebar":"docs"},"community/security":{"id":"community/security","title":"Security","description":"OAuth2 Proxy is a community project.","sidebar":"docs"},"configuration/alpha-config":{"id":"configuration/alpha-config","title":"Alpha Configuration","description":"This page contains documentation for alpha features.","sidebar":"docs"},"configuration/oauth_provider":{"id":"configuration/oauth_provider","title":"OAuth Provider Configuration","description":"You will need to register an OAuth application with a Provider (Google, GitHub or another provider), and configure it with Redirect URI(s) for the domain you intend to run oauth2-proxy on.","sidebar":"docs"},"configuration/overview":{"id":"configuration/overview","title":"Overview","description":"oauth2-proxy can be configured via command line options, environment variables or config file (in decreasing order of precedence, i.e. command line options will overwrite environment variables and environment variables will overwrite configuration file settings).","sidebar":"docs"},"configuration/session_storage":{"id":"configuration/session_storage","title":"Session Storage","description":"Sessions allow a user\'s authentication to be tracked between multiple HTTP","sidebar":"docs"},"configuration/tls":{"id":"configuration/tls","title":"TLS Configuration","description":"There are two recommended configurations:","sidebar":"docs"},"features/endpoints":{"id":"features/endpoints","title":"Endpoints","description":"OAuth2 Proxy responds directly to the following endpoints. All other endpoints will be proxied upstream when authenticated. The /oauth2 prefix can be changed with the --proxy-prefix config variable.","sidebar":"docs"},"installation":{"id":"installation","title":"Installation","description":"1. Choose how to deploy:","sidebar":"docs"}}}')}}]);

1
assets/js/585bdad0.932687e3.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/585bdad0.dbf4b31b.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/5897.ca6e53fd.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/5a047177.0bdaacd0.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[2598],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return h}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var s=n.createContext({}),c=function(e){var t=n.useContext(s),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=c(e.components);return n.createElement(s.Provider,{value:t},e.children)},l="mdxType",d={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},f=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,s=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),l=c(r),f=o,h=l["".concat(s,".").concat(f)]||l[f]||d[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function h(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=f;var u={};for(var s in t)hasOwnProperty.call(t,s)&&(u[s]=t[s]);u.originalType=e,u[l]="string"==typeof e?e:o,a[1]=u;for(var c=2;c<i;c++)a[c]=r[c];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}f.displayName="MDXCreateElement"},2846:function(e,t,r){r.r(t),r.d(t,{assets:function(){return p},contentTitle:function(){return s},default:function(){return h},frontMatter:function(){return u},metadata:function(){return c},toc:function(){return l}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},s=void 0,c={unversionedId:"behaviour",id:"version-7.0.x/behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/versioned_docs/version-7.0.x/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/7.0.x/behaviour",draft:!1,editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/versioned_docs/version-7.0.x/behaviour.md",tags:[],version:"7.0.x",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"version-7.0.x/docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/7.0.x/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/7.0.x/configuration/overview"}},p={},l=[],d={toc:l},f="wrapper";function h(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)(f,(0,n.Z)({},d,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/7.0.x/features/endpoints"},"endpoints"),"."))}h.isMDXComponent=!0}}]);

1
assets/js/5a047177.1f48e99a.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[2598],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return f}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var s=n.createContext({}),c=function(e){var t=n.useContext(s),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=c(e.components);return n.createElement(s.Provider,{value:t},e.children)},l={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},d=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,s=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),d=c(r),f=o,h=d["".concat(s,".").concat(f)]||d[f]||l[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function f(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=d;var u={};for(var s in t)hasOwnProperty.call(t,s)&&(u[s]=t[s]);u.originalType=e,u.mdxType="string"==typeof e?e:o,a[1]=u;for(var c=2;c<i;c++)a[c]=r[c];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}d.displayName="MDXCreateElement"},2846:function(e,t,r){r.r(t),r.d(t,{frontMatter:function(){return u},contentTitle:function(){return s},metadata:function(){return c},toc:function(){return p},default:function(){return d}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},s=void 0,c={unversionedId:"behaviour",id:"version-7.0.x/behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/versioned_docs/version-7.0.x/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/7.0.x/behaviour",editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/versioned_docs/version-7.0.x/behaviour.md",tags:[],version:"7.0.x",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"version-7.0.x/docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/7.0.x/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/7.0.x/configuration/overview"}},p=[],l={toc:p};function d(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)("wrapper",(0,n.Z)({},l,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/7.0.x/features/endpoints"},"endpoints"),"."))}d.isMDXComponent=!0}}]);

1
assets/js/5dfb0b41.4d1fb146.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/63d69a63.9a9115aa.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/63d69a63.bbcebc27.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/64f5dfca.1ea82678.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/64f5dfca.e07d0548.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/65a49553.8f91bc1a.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/65a49553.ca7af809.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/674dcd29.1771fd0d.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/674dcd29.33fe9b8e.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/6f497b56.d1fafb1d.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/6f497b56.d457a0d1.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/76aee1e9.05f16d16.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/76aee1e9.7f40c9d0.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/771.bdacdc80.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/7874e99f.028314e8.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/7874e99f.ffe18382.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/7b04b1d5.375b9d33.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/7b04b1d5.d117d167.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/7dcecc8d.02aac3e1.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/7dcecc8d.0763dc99.js Normal file
View File

File diff suppressed because one or more lines are too long

2
assets/js/8443.5a23e88e.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/8443.5a23e88e.js.LICENSE.txt Normal file
View File

@ -0,0 +1 @@
/*! https://mths.be/cssesc v3.0.0 by @mathias */

1
assets/js/8c826f25.7f73ac8a.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/8c826f25.869d5ddd.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/8f68f251.7848ceac.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[507],{4802:function(o){o.exports=JSON.parse('{"pluginId":"default","version":"7.3.x","label":"7.3.x","banner":"unmaintained","badge":true,"noIndex":false,"className":"docs-version-7.3.x","isLast":false,"docsSidebars":{"docs":[{"type":"link","label":"Installation","href":"/oauth2-proxy/docs/7.3.x/","docId":"installation"},{"type":"link","label":"Behaviour","href":"/oauth2-proxy/docs/7.3.x/behaviour","docId":"behaviour"},{"type":"category","label":"Configuration","collapsed":false,"items":[{"type":"link","label":"Overview","href":"/oauth2-proxy/docs/7.3.x/configuration/overview","docId":"configuration/overview"},{"type":"link","label":"OAuth Provider Configuration","href":"/oauth2-proxy/docs/7.3.x/configuration/oauth_provider","docId":"configuration/oauth_provider"},{"type":"link","label":"Session Storage","href":"/oauth2-proxy/docs/7.3.x/configuration/session_storage","docId":"configuration/session_storage"},{"type":"link","label":"TLS Configuration","href":"/oauth2-proxy/docs/7.3.x/configuration/tls","docId":"configuration/tls"},{"type":"link","label":"Alpha Configuration","href":"/oauth2-proxy/docs/7.3.x/configuration/alpha-config","docId":"configuration/alpha-config"}],"collapsible":true},{"type":"category","label":"Features","collapsed":false,"items":[{"type":"link","label":"Endpoints","href":"/oauth2-proxy/docs/7.3.x/features/endpoints","docId":"features/endpoints"}],"collapsible":true},{"type":"category","label":"Community","collapsed":false,"items":[{"type":"link","label":"Security","href":"/oauth2-proxy/docs/7.3.x/community/security","docId":"community/security"}],"collapsible":true}]},"docs":{"behaviour":{"id":"behaviour","title":"Behaviour","description":"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy\'s session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).","sidebar":"docs"},"community/security":{"id":"community/security","title":"Security","description":"OAuth2 Proxy is a community project.","sidebar":"docs"},"configuration/alpha-config":{"id":"configuration/alpha-config","title":"Alpha Configuration","description":"This page contains documentation for alpha features.","sidebar":"docs"},"configuration/oauth_provider":{"id":"configuration/oauth_provider","title":"OAuth Provider Configuration","description":"You will need to register an OAuth application with a Provider (Google, GitHub or another provider), and configure it with Redirect URI(s) for the domain you intend to run oauth2-proxy on.","sidebar":"docs"},"configuration/overview":{"id":"configuration/overview","title":"Overview","description":"oauth2-proxy can be configured via command line options, environment variables or config file (in decreasing order of precedence, i.e. command line options will overwrite environment variables and environment variables will overwrite configuration file settings).","sidebar":"docs"},"configuration/session_storage":{"id":"configuration/session_storage","title":"Session Storage","description":"Sessions allow a user\'s authentication to be tracked between multiple HTTP","sidebar":"docs"},"configuration/tls":{"id":"configuration/tls","title":"TLS Configuration","description":"There are two recommended configurations:","sidebar":"docs"},"features/endpoints":{"id":"features/endpoints","title":"Endpoints","description":"OAuth2 Proxy responds directly to the following endpoints. All other endpoints will be proxied upstream when authenticated. The /oauth2 prefix can be changed with the --proxy-prefix config variable.","sidebar":"docs"},"installation":{"id":"installation","title":"Installation","description":"1. Choose how to deploy:","sidebar":"docs"}}}')}}]);

1
assets/js/8f68f251.7e096a77.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[507],{4802:function(o){o.exports=JSON.parse('{"pluginId":"default","version":"7.3.x","label":"7.3.x","banner":"unmaintained","badge":true,"className":"docs-version-7.3.x","isLast":false,"docsSidebars":{"docs":[{"type":"link","label":"Installation","href":"/oauth2-proxy/docs/7.3.x/","docId":"installation"},{"type":"link","label":"Behaviour","href":"/oauth2-proxy/docs/7.3.x/behaviour","docId":"behaviour"},{"type":"category","label":"Configuration","collapsed":false,"items":[{"type":"link","label":"Overview","href":"/oauth2-proxy/docs/7.3.x/configuration/overview","docId":"configuration/overview"},{"type":"link","label":"OAuth Provider Configuration","href":"/oauth2-proxy/docs/7.3.x/configuration/oauth_provider","docId":"configuration/oauth_provider"},{"type":"link","label":"Session Storage","href":"/oauth2-proxy/docs/7.3.x/configuration/session_storage","docId":"configuration/session_storage"},{"type":"link","label":"TLS Configuration","href":"/oauth2-proxy/docs/7.3.x/configuration/tls","docId":"configuration/tls"},{"type":"link","label":"Alpha Configuration","href":"/oauth2-proxy/docs/7.3.x/configuration/alpha-config","docId":"configuration/alpha-config"}],"collapsible":true},{"type":"category","label":"Features","collapsed":false,"items":[{"type":"link","label":"Endpoints","href":"/oauth2-proxy/docs/7.3.x/features/endpoints","docId":"features/endpoints"}],"collapsible":true},{"type":"category","label":"Community","collapsed":false,"items":[{"type":"link","label":"Security","href":"/oauth2-proxy/docs/7.3.x/community/security","docId":"community/security"}],"collapsible":true}]},"docs":{"behaviour":{"id":"behaviour","title":"Behaviour","description":"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy\'s session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).","sidebar":"docs"},"community/security":{"id":"community/security","title":"Security","description":"OAuth2 Proxy is a community project.","sidebar":"docs"},"configuration/alpha-config":{"id":"configuration/alpha-config","title":"Alpha Configuration","description":"This page contains documentation for alpha features.","sidebar":"docs"},"configuration/oauth_provider":{"id":"configuration/oauth_provider","title":"OAuth Provider Configuration","description":"You will need to register an OAuth application with a Provider (Google, GitHub or another provider), and configure it with Redirect URI(s) for the domain you intend to run oauth2-proxy on.","sidebar":"docs"},"configuration/overview":{"id":"configuration/overview","title":"Overview","description":"oauth2-proxy can be configured via command line options, environment variables or config file (in decreasing order of precedence, i.e. command line options will overwrite environment variables and environment variables will overwrite configuration file settings).","sidebar":"docs"},"configuration/session_storage":{"id":"configuration/session_storage","title":"Session Storage","description":"Sessions allow a user\'s authentication to be tracked between multiple HTTP","sidebar":"docs"},"configuration/tls":{"id":"configuration/tls","title":"TLS Configuration","description":"There are two recommended configurations:","sidebar":"docs"},"features/endpoints":{"id":"features/endpoints","title":"Endpoints","description":"OAuth2 Proxy responds directly to the following endpoints. All other endpoints will be proxied upstream when authenticated. The /oauth2 prefix can be changed with the --proxy-prefix config variable.","sidebar":"docs"},"installation":{"id":"installation","title":"Installation","description":"1. Choose how to deploy:","sidebar":"docs"}}}')}}]);

1
assets/js/92147208.0809b355.js
View File

File diff suppressed because one or more lines are too long

1
assets/js/92147208.1de08157.js Normal file
View File

File diff suppressed because one or more lines are too long

1
assets/js/935f2afb.4a3f1d92.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[53],{1109:function(e){e.exports=JSON.parse('{"pluginId":"default","version":"current","label":"Next","banner":"unreleased","badge":true,"className":"docs-version-current","isLast":false,"docsSidebars":{"docs":[{"type":"link","label":"Installation","href":"/oauth2-proxy/docs/next/","docId":"installation"},{"type":"link","label":"Behaviour","href":"/oauth2-proxy/docs/next/behaviour","docId":"behaviour"},{"type":"category","label":"Configuration","collapsed":false,"items":[{"type":"link","label":"Overview","href":"/oauth2-proxy/docs/next/configuration/overview","docId":"configuration/overview"},{"type":"link","label":"OAuth Provider Configuration","href":"/oauth2-proxy/docs/next/configuration/oauth_provider","docId":"configuration/oauth_provider"},{"type":"link","label":"Session Storage","href":"/oauth2-proxy/docs/next/configuration/session_storage","docId":"configuration/session_storage"},{"type":"link","label":"TLS Configuration","href":"/oauth2-proxy/docs/next/configuration/tls","docId":"configuration/tls"},{"type":"link","label":"Alpha Configuration","href":"/oauth2-proxy/docs/next/configuration/alpha-config","docId":"configuration/alpha-config"}],"collapsible":true},{"type":"category","label":"Features","collapsed":false,"items":[{"type":"link","label":"Endpoints","href":"/oauth2-proxy/docs/next/features/endpoints","docId":"features/endpoints"}],"collapsible":true},{"type":"category","label":"Community","collapsed":false,"items":[{"type":"link","label":"Security","href":"/oauth2-proxy/docs/next/community/security","docId":"community/security"}],"collapsible":true}]},"docs":{"behaviour":{"id":"behaviour","title":"Behaviour","description":"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy\'s session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).","sidebar":"docs"},"community/security":{"id":"community/security","title":"Security","description":"OAuth2 Proxy is a community project.","sidebar":"docs"},"configuration/alpha-config":{"id":"configuration/alpha-config","title":"Alpha Configuration","description":"This page contains documentation for alpha features.","sidebar":"docs"},"configuration/oauth_provider":{"id":"configuration/oauth_provider","title":"OAuth Provider Configuration","description":"You will need to register an OAuth application with a Provider (Google, GitHub or another provider), and configure it with Redirect URI(s) for the domain you intend to run oauth2-proxy on.","sidebar":"docs"},"configuration/overview":{"id":"configuration/overview","title":"Overview","description":"oauth2-proxy can be configured via command line options, environment variables or config file (in decreasing order of precedence, i.e. command line options will overwrite environment variables and environment variables will overwrite configuration file settings).","sidebar":"docs"},"configuration/session_storage":{"id":"configuration/session_storage","title":"Session Storage","description":"Sessions allow a user\'s authentication to be tracked between multiple HTTP","sidebar":"docs"},"configuration/tls":{"id":"configuration/tls","title":"TLS Configuration","description":"There are two recommended configurations:","sidebar":"docs"},"features/endpoints":{"id":"features/endpoints","title":"Endpoints","description":"OAuth2 Proxy responds directly to the following endpoints. All other endpoints will be proxied upstream when authenticated. The /oauth2 prefix can be changed with the --proxy-prefix config variable.","sidebar":"docs"},"installation":{"id":"installation","title":"Installation","description":"1. Choose how to deploy:","sidebar":"docs"}}}')}}]);

1
assets/js/935f2afb.862d22e4.js Normal file
View File

@ -0,0 +1 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[53],{1109:function(e){e.exports=JSON.parse('{"pluginId":"default","version":"current","label":"Next","banner":"unreleased","badge":true,"noIndex":false,"className":"docs-version-current","isLast":false,"docsSidebars":{"docs":[{"type":"link","label":"Installation","href":"/oauth2-proxy/docs/next/","docId":"installation"},{"type":"link","label":"Behaviour","href":"/oauth2-proxy/docs/next/behaviour","docId":"behaviour"},{"type":"category","label":"Configuration","collapsed":false,"items":[{"type":"link","label":"Overview","href":"/oauth2-proxy/docs/next/configuration/overview","docId":"configuration/overview"},{"type":"link","label":"OAuth Provider Configuration","href":"/oauth2-proxy/docs/next/configuration/oauth_provider","docId":"configuration/oauth_provider"},{"type":"link","label":"Session Storage","href":"/oauth2-proxy/docs/next/configuration/session_storage","docId":"configuration/session_storage"},{"type":"link","label":"TLS Configuration","href":"/oauth2-proxy/docs/next/configuration/tls","docId":"configuration/tls"},{"type":"link","label":"Alpha Configuration","href":"/oauth2-proxy/docs/next/configuration/alpha-config","docId":"configuration/alpha-config"}],"collapsible":true},{"type":"category","label":"Features","collapsed":false,"items":[{"type":"link","label":"Endpoints","href":"/oauth2-proxy/docs/next/features/endpoints","docId":"features/endpoints"}],"collapsible":true},{"type":"category","label":"Community","collapsed":false,"items":[{"type":"link","label":"Security","href":"/oauth2-proxy/docs/next/community/security","docId":"community/security"}],"collapsible":true}]},"docs":{"behaviour":{"id":"behaviour","title":"Behaviour","description":"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy\'s session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).","sidebar":"docs"},"community/security":{"id":"community/security","title":"Security","description":"OAuth2 Proxy is a community project.","sidebar":"docs"},"configuration/alpha-config":{"id":"configuration/alpha-config","title":"Alpha Configuration","description":"This page contains documentation for alpha features.","sidebar":"docs"},"configuration/oauth_provider":{"id":"configuration/oauth_provider","title":"OAuth Provider Configuration","description":"You will need to register an OAuth application with a Provider (Google, GitHub or another provider), and configure it with Redirect URI(s) for the domain you intend to run oauth2-proxy on.","sidebar":"docs"},"configuration/overview":{"id":"configuration/overview","title":"Overview","description":"oauth2-proxy can be configured via command line options, environment variables or config file (in decreasing order of precedence, i.e. command line options will overwrite environment variables and environment variables will overwrite configuration file settings).","sidebar":"docs"},"configuration/session_storage":{"id":"configuration/session_storage","title":"Session Storage","description":"Sessions allow a user\'s authentication to be tracked between multiple HTTP","sidebar":"docs"},"configuration/tls":{"id":"configuration/tls","title":"TLS Configuration","description":"There are two recommended configurations:","sidebar":"docs"},"features/endpoints":{"id":"features/endpoints","title":"Endpoints","description":"OAuth2 Proxy responds directly to the following endpoints. All other endpoints will be proxied upstream when authenticated. The /oauth2 prefix can be changed with the --proxy-prefix config variable.","sidebar":"docs"},"installation":{"id":"installation","title":"Installation","description":"1. Choose how to deploy:","sidebar":"docs"}}}')}}]);

1
assets/js/94285305.1f5fc964.js
View File

@ -1 +0,0 @@
"use strict";(self.webpackChunkdocusaurus=self.webpackChunkdocusaurus||[]).push([[2822],{3905:function(e,t,r){r.d(t,{Zo:function(){return p},kt:function(){return f}});var n=r(7294);function o(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function i(e,t){var r=Object.keys(e);if(Object.getOwnPropertySymbols){var n=Object.getOwnPropertySymbols(e);t&&(n=n.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),r.push.apply(r,n)}return r}function a(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{};t%2?i(Object(r),!0).forEach((function(t){o(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):i(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function u(e,t){if(null==e)return{};var r,n,o=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||(o[r]=e[r]);return o}(e,t);if(Object.getOwnPropertySymbols){var i=Object.getOwnPropertySymbols(e);for(n=0;n<i.length;n++)r=i[n],t.indexOf(r)>=0||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}var c=n.createContext({}),s=function(e){var t=n.useContext(c),r=t;return e&&(r="function"==typeof e?e(t):a(a({},t),e)),r},p=function(e){var t=s(e.components);return n.createElement(c.Provider,{value:t},e.children)},l={inlineCode:"code",wrapper:function(e){var t=e.children;return n.createElement(n.Fragment,{},t)}},d=n.forwardRef((function(e,t){var r=e.components,o=e.mdxType,i=e.originalType,c=e.parentName,p=u(e,["components","mdxType","originalType","parentName"]),d=s(r),f=o,h=d["".concat(c,".").concat(f)]||d[f]||l[f]||i;return r?n.createElement(h,a(a({ref:t},p),{},{components:r})):n.createElement(h,a({ref:t},p))}));function f(e,t){var r=arguments,o=t&&t.mdxType;if("string"==typeof e||o){var i=r.length,a=new Array(i);a[0]=d;var u={};for(var c in t)hasOwnProperty.call(t,c)&&(u[c]=t[c]);u.originalType=e,u.mdxType="string"==typeof e?e:o,a[1]=u;for(var s=2;s<i;s++)a[s]=r[s];return n.createElement.apply(null,a)}return n.createElement.apply(null,r)}d.displayName="MDXCreateElement"},3761:function(e,t,r){r.r(t),r.d(t,{frontMatter:function(){return u},contentTitle:function(){return c},metadata:function(){return s},toc:function(){return p},default:function(){return d}});var n=r(7462),o=r(3366),i=(r(7294),r(3905)),a=["components"],u={id:"behaviour",title:"Behaviour"},c=void 0,s={unversionedId:"behaviour",id:"behaviour",title:"Behaviour",description:"1. Any request passing through the proxy (and not matched by --skip-auth-regex) is checked for the proxy's session cookie (--cookie-name) (or, if allowed, a JWT token - see --skip-jwt-bearer-tokens).",source:"@site/docs/behaviour.md",sourceDirName:".",slug:"/behaviour",permalink:"/oauth2-proxy/docs/next/behaviour",editUrl:"https://github.com/oauth2-proxy/oauth2-proxy/edit/master/docs/docs/behaviour.md",tags:[],version:"current",frontMatter:{id:"behaviour",title:"Behaviour"},sidebar:"docs",previous:{title:"Installation",permalink:"/oauth2-proxy/docs/next/"},next:{title:"Overview",permalink:"/oauth2-proxy/docs/next/configuration/overview"}},p=[],l={toc:p};function d(e){var t=e.components,r=(0,o.Z)(e,a);return(0,i.kt)("wrapper",(0,n.Z)({},l,r,{components:t,mdxType:"MDXLayout"}),(0,i.kt)("ol",null,(0,i.kt)("li",{parentName:"ol"},"Any request passing through the proxy (and not matched by ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-auth-regex"),") is checked for the proxy's session cookie (",(0,i.kt)("inlineCode",{parentName:"li"},"--cookie-name"),") (or, if allowed, a JWT token - see ",(0,i.kt)("inlineCode",{parentName:"li"},"--skip-jwt-bearer-tokens"),")."),(0,i.kt)("li",{parentName:"ol"},"If authentication is required but missing then the user is asked to log in and redirected to the authentication provider (unless it is an Ajax request, i.e. one with ",(0,i.kt)("inlineCode",{parentName:"li"},"Accept: application/json"),", in which case 401 Unauthorized is returned)"),(0,i.kt)("li",{parentName:"ol"},"After returning from the authentication provider, the oauth tokens are stored in the configured session store (cookie, redis, ...) and a cookie is set"),(0,i.kt)("li",{parentName:"ol"},"The request is forwarded to the upstream server with added user info and authentication headers (depending on the configuration)")),(0,i.kt)("p",null,"Notice that the proxy also provides a number of useful ",(0,i.kt)("a",{parentName:"p",href:"/oauth2-proxy/docs/next/features/endpoints"},"endpoints"),"."))}d.isMDXComponent=!0}}]);

Some files were not shown because too many files have changed in this diff Show More