M2M authentication on the Proxy Provider <-> Oauth2 provider #20409
william413215
started this conversation in
General
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
We are using the Proxy provider to secure our backend Grafana stack. We created two providers within Authentik: one proxy provider that is used to secure the Grafana stack and one Oauth2 provider that is used to login to the Grafana UI (generic_oauth). Within the Proxy provider, we selected the Grafana stack provider as 'Federated OIDC Provider'. We would like to use this setup, because it allows us to set the 'X-Scope-OrgID' based on property mappings that are attached to the providers. For now, the only way to access the proxy provider (m2m), is to first get a token on behalf of the Grafana oauth2 provider, exchange the token on behalf of the provider provider and then access the resource.
Would it also be possible to allow specific issuers and/or audiences to the proxy provider without the need of exchanging the token?
Beta Was this translation helpful? Give feedback.
All reactions