cortex35 commented on issue #9583: URL: https://github.com/apache/apisix/issues/9583#issuecomment-1956631312
Hello, thank you for your fantastic work. We would like to use apisix, but we are stuck on one point. We want to utilize our identity provider with OpenID Connect and manage access restrictions through apisix. I dont understand how use key-auth plugin with openid-connect, we have to add a consumer api key to header in addition of access token ? Initially, I thought of using openid-connect plugins along with consumer related plugins like consumer-restriction or limit-*. However, based on my understanding from the issue and documentations I’ve found, it seems this is not currently possible. Did i miss something ? Is there a specific limitation preventing this feature ? Could the openid-connect plugin check, for exemple, the "sub" in the access token and associate it with an apisix consumer ? Thanks -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
