8000 Condition to check the HTTP Request header · Issue #14604 · keycloak/keycloak · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
Condition to check the HTTP Request header #14604
New issue
New issue
Open
#14605
Open
Condition to check the HTTP Request header#14604
#14605
Labels
kind/featureCategorizes a PR related to a new featurestatus/triage
@kreativmonkey

Description

@kreativmonkey
kreativmonkey
opened on Sep 27, 2022

Description

In some situations, you may want to control the authentication process based on the origin of the request. For this purpose, the HTTP request header can be evaluated. This possibility is currently only provided by OTP Form which controls the display of the OTP Form.

Discussion

No response

Motivation

In order to control the authentication process outside the OTP form based on the origin of the request, a condition for checking the http request header is necessary.

Details

The implementation already exists in the OTP form and can be extracted there and converted into an independent condition.

A regex expression should be passed, which is then compared with the HTTP request header. Furthermore, it makes sense to enable an inversion of the request.

https://github.com/keycloak/keycloak/blob/main/services/src/main/java/org/keycloak/authentication/authenticators/browser/ConditionalOtpFormAuthenticator.java

https://github.com/keycloak/keycloak/blob/main/services/src/main/java/org/keycloak/authentication/authenticators/browser/ConditionalOtpFormAuthenticatorFactory.java

Metadata

Metadata

Assignees

No one assigned

    Labels

    kind/featureCategorizes a PR related to a new featurestatus/triage

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions
      0