Hi Francis, > I've read your description, and I confess I'm not sure what benefit > auth_request within nginx gives you. It looks like your application is > doing its own auth check on every request anyway, so having nginx do > the same thing seems redundant. I'm probably missing something.
can u please tell me the concept and usage of auth_request module. What I understood from the documentation is stated below."http://nginx.org/en/docs/http/ngx_http_auth_request_module.html"; Auth_Request Understanding: If the auth requirement of an application is to use something other than BASIC or jwt THEN use auth_request. auth_request can be used to send each request to a custom authentication application and get the requests authenticated from that application. NGINX will send a subrequest to auth_request application for each incoming client request. (This is the same logic which MAXIM told me in the previous replies. "https://forum.nginx.org/read.php?2,273515,273516#msg-273516";) ************************** MAXIM's Reply Below **************************************** > You misunderstood what auth_request does. Instead, it issues a > subrequest for every incoming request, and allows further > processing of the request if and only if the subrequest returns > 200. No attempts are made to look into the response returned for > the original request, that is, "protected application" ************************** END MAXIM's Reply**************************************** Posted at Nginx Forum: https://forum.nginx.org/read.php?2,273515,273586#msg-273586 _______________________________________________ nginx mailing list [email protected] http://mailman.nginx.org/mailman/listinfo/nginx
