By: Kee Wee Wong named 24 Oct 2019 at 12:17 a.m. CDT

3 Responses
Kee Wee Wong gravatar
Hi Support, We are currently looking at utilizing Gluu Gateway 4.0 as a web proxy to provide user authentication and step-up authentication for backend applications. The authentication portion will be similar to the Apache mod_auth_openidc integration. In the Apache mod_auth_openidc, there is an option to pass claim as HTTP Header to the backend application. We understand that the Gluu Gateway 4.0 gluu-openid-connect plugin will pass the X-OpenId-Connect-userinfo JSON header to the backend, however, some COTS application will only consume simple HTTP header with simple parameters within (for example, uid or email in plaintext). Is it possible to configure the plugin to send additional HTTP headers in addition to the X-OpenId-Connect headers?

By Meghna Joshi staff 25 Oct 2019 at 2:30 a.m. CDT

Meghna Joshi gravatar
Hi Kee Wee Wong Currently this feature is not available in GG 4.0. We planed it to add it in next GG release 4.1. Thank you, Meghna Joshi

By Kee Wee Wong named 25 Oct 2019 at 3:21 a.m. CDT

Kee Wee Wong gravatar
Hi Meghna, Noted on this. Thank you!

By Michael Schwartz staff 25 Oct 2019 at 3:26 a.m. CDT

Michael Schwartz gravatar
I agree this is needed, and I marked it as high priority [gluu-gateway-373](https://github.com/GluuFederation/gluu-gateway/issues/373)