Sn0rt commented on issue #9922: URL: https://github.com/apache/apisix/issues/9922#issuecomment-1655180162
> > How can you see in this picture that APISIX takes over the user's authentication request? > > well, it is my error. we just use apisix plugin openid-connect to process authentication with oauth2 server > > ```yaml > - uri: /api/sso/* > service_id: my-admin > plugins: > openid-connect: > client_id: apisix > client_secret: xxx > discovery: https://xxx.com/auth/realms/xxx-xxx/.well-known/openid-configuration > scope: openid > bearer_only: false > realm: xxx-xxx > redirect_uri: /api/sso/callback > logout_path: /api/sso/logout > introspection_endpoint_auth_method: client_secret_post > post_logout_redirect_uri: xxx.com > set_access_token_header: false > set_id_token_header: false > > ``` > > and i did't put this flow in picture here is the flow pictue in openid-connect docs https://apisix.apache.org/docs/apisix/plugins/openid-connect/ > >  in short. Do you want APISIX to pass a proxy when using the openid-connect plugin to access the auth service? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
