英文:
Can Azure Front Door authenticate a Azure AD JWT before sending the request to the backend service?
问题
我们计划使用FD作为多个后端应用程序的反向代理。如果授权头部包含有效的JWT,我们只想将请求发送到后端。
(类似于APIM的validate-jwt策略)
在Front Door中是否可能实现这一点?或者有更好的方法来实现这一目标。
谢谢
Stefan
英文:
we are planning to use FD to act as an reverse proxy to several backend apps. We would like to only send the request to the backend if the Authorization Header has a valid JWT.
(similar to the APIM validate-jwt policy)
Is this possible in Front Door? Or is there a better way to achieve this.
Thanks
Stefan
答案1
得分: 0
你可以使用Azure前端门户规则引擎来检查授权标头是否包含类似有效JWT的内容,但它没有能力像API管理策略那样实际验证令牌。如果标头匹配类似有效令牌的内容,你可以将其转发到相应的后端。如果看起来不包含有效令牌,你可以将请求发送到适当的站点以获取JWT。
英文:
You can use the Azure Front Door rules engine to check to see if the authorization header contains something that looks like a valid JWT, but it won't have the ability to actually validate the token like the API Managment policy can. If the header match something that looks like a valid token you can forward it on to the proper backend. If it doesn't look like it contains a valid token you can send the request to the appropriate site to get a JWT.
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论