Custom informations in the X-Endpoint-API-UserInfo header
577 views
Skip to first unread message
ar...@asate.com
Jul 11, 2017, 11:00:17 AM7/11/17
to Google Cloud Endpoints
Can i add custom informations from the JWT to the X-Endpoint-API-UserInfo header?
Thanks for help
Aron
Dan Ciruli
Jul 11, 2017, 12:46:03 PM7/11/17
to ar...@asate.com, Google Cloud Endpoints
ESP will pass the entire auth header on to your backend. Is that enough? Is there something else you need?
DC
--
You received this message because you are subscribed to the Google Groups "Google Cloud Endpoints" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-endpoints+unsub...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-endpoints/ede71ab4-7d30-4bcf-9cc0-9a165810dc6d%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Aron Suarez
Jul 11, 2017, 1:27:12 PM7/11/17
to Dan Ciruli, Google Cloud Endpoints
Yes i know this but my thoughts is, i decode the JWT in my api a second time to get informations from it and my idea is to do this only one time on the ESP and pass the whole content from the JWT in the X-Endpoint-API-UserInfo header.
I think there is no way to add the whole JWT content to the X-Endpoint-API-UserInfo header right?
Best
On Tue, 11 Jul 2017 at 18:46 Dan Ciruli <cir...@google.com> wrote:
ESP will pass the entire auth header on to your backend. Is that enough? Is there something else you need?DCOn Jul 11, 2017 8:00 AM, <ar...@asate.com> wrote:--Can i add custom informations from the JWT to the X-Endpoint-API-UserInfo header?Thanks for helpAron
You received this message because you are subscribed to the Google Groups "Google Cloud Endpoints" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-endp...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-endpoints/ede71ab4-7d30-4bcf-9cc0-9a165810dc6d%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
Kind regards
Aron Suarez
+41 79 839 03 85
ar...@asate.com
Asate AG
Kürzestrasse 5
8716 Schmerikon
Switzerland
con...@asate.com
+41 43 497 27 27
Aron Suarez
+41 79 839 03 85
ar...@asate.com
Asate AG
Kürzestrasse 5
8716 Schmerikon
Switzerland
con...@asate.com
+41 43 497 27 27
Sarvani Vakkalanka
Jul 11, 2017, 2:43:09 PM7/11/17
to Aron Suarez, Dan Ciruli, Google Cloud Endpoints
Hi Aron,
The X-Endpoint-API-UserInfo header does not contain all the JWT claims (but you get a subset) but this can be supported. We will look into this and see if we can add this.
Thanks,
Sarvani
On Tue, Jul 11, 2017 at 10:27 AM, Aron Suarez <ar...@asate.com> wrote:
Yes i know this but my thoughts is, i decode the JWT in my api a second time to get informations from it and my idea is to do this only one time on the ESP and pass the whole content from the JWT in the X-Endpoint-API-UserInfo header.I think there is no way to add the whole JWT content to the X-Endpoint-API-UserInfo header right?Best
On Tue, 11 Jul 2017 at 18:46 Dan Ciruli <cir...@google.com> wrote:
ESP will pass the entire auth header on to your backend. Is that enough? Is there something else you need?DCOn Jul 11, 2017 8:00 AM, <ar...@asate.com> wrote:--Can i add custom informations from the JWT to the X-Endpoint-API-UserInfo header?Thanks for helpAron
You received this message because you are subscribed to the Google Groups "Google Cloud Endpoints" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-endpoints+unsub...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-endpoints/ede71ab4-7d30-4bcf-9cc0-9a165810dc6d%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
Kind regards
Aron Suarez
+41 79 839 03 85
ar...@asate.com
Asate AG
Kürzestrasse 5
8716 Schmerikon
Switzerland
con...@asate.com
+41 43 497 27 27
--
You received this message because you are subscribed to the Google Groups "Google Cloud Endpoints" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-endpoints+unsub...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-endpoints/CAPvF_0mzKcoBSr_bub4SKcrwy%2BPSjOPBBNLF8JcOe9v80QHe-w%40mail.gmail.com.
Thanks,
Sarvani
Aron Suarez
Jul 12, 2017, 2:24:43 PM7/12/17
to Sarvani Vakkalanka, Dan Ciruli, Google Cloud Endpoints
Hi Sarvani
Sounds good, do you see any time range for this feature?
Best Aron
On Tue, 11 Jul 2017 at 20:43 Sarvani Vakkalanka <vakka...@google.com> wrote:
Hi Aron,The X-Endpoint-API-UserInfo header does not contain all the JWT claims (but you get a subset) but this can be supported. We will look into this and see if we can add this.Thanks,SarvaniOn Tue, Jul 11, 2017 at 10:27 AM, Aron Suarez <ar...@asate.com> wrote:
Yes i know this but my thoughts is, i decode the JWT in my api a second time to get informations from it and my idea is to do this only one time on the ESP and pass the whole content from the JWT in the X-Endpoint-API-UserInfo header.I think there is no way to add the whole JWT content to the X-Endpoint-API-UserInfo header right?Best
On Tue, 11 Jul 2017 at 18:46 Dan Ciruli <cir...@google.com> wrote:
ESP will pass the entire auth header on to your backend. Is that enough? Is there something else you need?DCOn Jul 11, 2017 8:00 AM, <ar...@asate.com> wrote:--Can i add custom informations from the JWT to the X-Endpoint-API-UserInfo header?Thanks for helpAron
You received this message because you are subscribed to the Google Groups "Google Cloud Endpoints" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-endp...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-endpoints/ede71ab4-7d30-4bcf-9cc0-9a165810dc6d%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
Kind regards
Aron Suarez
+41 79 839 03 85
ar...@asate.com
Asate AG
Kürzestrasse 5
8716 Schmerikon
Switzerland
con...@asate.com
+41 43 497 27 27
--
You received this message because you are subscribed to the Google Groups "Google Cloud Endpoints" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-endp...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-endpoints/CAPvF_0mzKcoBSr_bub4SKcrwy%2BPSjOPBBNLF8JcOe9v80QHe-w%40mail.gmail.com.--Thanks,Sarvani
--
Dan Ciruli
Jul 12, 2017, 3:18:58 PM7/12/17
to Aron Suarez, Sarvani Vakkalanka, Google Cloud Endpoints
Sorry -- we can't provide a timeframe at the moment. But we can post something if/when we have a timeline.
DC
On Wed, Jul 12, 2017 at 11:24 AM, Aron Suarez <ar...@asate.com> wrote:
Hi SarvaniSounds good, do you see any time range for this feature?Best Aron
On Tue, 11 Jul 2017 at 20:43 Sarvani Vakkalanka <vakka...@google.com> wrote:
Hi Aron,The X-Endpoint-API-UserInfo header does not contain all the JWT claims (but you get a subset) but this can be supported. We will look into this and see if we can add this.Thanks,SarvaniOn Tue, Jul 11, 2017 at 10:27 AM, Aron Suarez <ar...@asate.com> wrote:
Yes i know this but my thoughts is, i decode the JWT in my api a second time to get informations from it and my idea is to do this only one time on the ESP and pass the whole content from the JWT in the X-Endpoint-API-UserInfo header.I think there is no way to add the whole JWT content to the X-Endpoint-API-UserInfo header right?Best
On Tue, 11 Jul 2017 at 18:46 Dan Ciruli <cir...@google.com> wrote:
ESP will pass the entire auth header on to your backend. Is that enough? Is there something else you need?DCOn Jul 11, 2017 8:00 AM, <ar...@asate.com> wrote:--Can i add custom informations from the JWT to the X-Endpoint-API-UserInfo header?Thanks for helpAron
You received this message because you are subscribed to the Google Groups "Google Cloud Endpoints" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-endpoints+unsub...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-endpoints/ede71ab4-7d30-4bcf-9cc0-9a165810dc6d%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
Kind regards
Aron Suarez
+41 79 839 03 85
ar...@asate.com
Asate AG
Kürzestrasse 5
8716 Schmerikon
Switzerland
con...@asate.com
+41 43 497 27 27
--
You received this message because you are subscribed to the Google Groups "Google Cloud Endpoints" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-endpoints+unsub...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-endpoints/CAPvF_0mzKcoBSr_bub4SKcrwy%2BPSjOPBBNLF8JcOe9v80QHe-w%40mail.gmail.com.--Thanks,Sarvani
--Kind regards
Aron Suarez
+41 79 839 03 85
ar...@asate.com
Asate AG
Kürzestrasse 5
8716 Schmerikon
Switzerland
con...@asate.com
+41 43 497 27 27
DC
jbeli...@gmail.com
Feb 19, 2018, 6:26:02 PM2/19/18
to Google Cloud Endpoints
Nice post, I was looking exactly for this.
This would be a great feature in order to isolate security, authorization and authentication from backend behind the endpoint.
Is there any reason I am missing so It would not be a valid architecture?
This would be a great feature in order to isolate security, authorization and authentication from backend behind the endpoint.
Is there any reason I am missing so It would not be a valid architecture?
Thx
Reply all
Reply to author
Forward
0 new messages