projects/nexus-5-auth
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
nexus-5-auth/nexus-5-auth-oathkeeper/config/access-rules/django.yml
Damien Coles a9fa1a0a0f public-ready-init
2026-01-26 11:15:52 -05:00

124 lines
2.5 KiB
YAML
Raw Permalink Blame History

# Static files - Public access (no authentication required)
# Used for email logos, favicons, etc.
- id: "django:static:public"
version: "v0.40.0"
upstream:
url: "${BACKEND_URL}"
preserve_host: false
match:
url: "https://api.example.com/static<**>"
methods:
- GET
- HEAD
- OPTIONS
authenticators:
- handler: anonymous
authorizer:
handler: allow
mutators:
- handler: noop
errors:
- handler: json
# GraphQL API - Cookie session authentication
- id: "django:graphql:main"
version: "v0.40.0"
upstream:
url: "${BACKEND_URL}"
preserve_host: false
match:
url: "https://api.example.com/graphql/<**>"
methods:
- GET
- POST
- OPTIONS
authenticators:
- handler: cookie_session
authorizer:
handler: allow
mutators:
- handler: header
errors:
- handler: json
# Upload endpoints - Cookie session authentication
- id: "django:api:upload:main"
version: "v0.40.0"
upstream:
url: "${BACKEND_URL}"
preserve_host: false
match:
url: "https://api.example.com/api/upload/<**>"
methods:
- POST
- OPTIONS
authenticators:
- handler: cookie_session
authorizer:
handler: allow
mutators:
- handler: header
errors:
- handler: json
# Media endpoints - Cookie session authentication
- id: "django:api:media:main"
version: "v0.40.0"
upstream:
url: "${BACKEND_URL}"
preserve_host: false
match:
url: "https://api.example.com/api/media/<**>"
methods:
- GET
- OPTIONS
authenticators:
- handler: cookie_session
authorizer:
handler: allow
mutators:
- handler: header
errors:
- handler: json
# Admin interface - Cookie session authentication
- id: "django:admin:main"
version: "v0.40.0"
upstream:
url: "${BACKEND_URL}"
preserve_host: false
match:
url: "https://api.example.com/admin/<**>"
methods:
- GET
- POST
- OPTIONS
authenticators:
- handler: cookie_session
authorizer:
handler: allow
mutators:
- handler: header
errors:
- handler: json
# WebSocket Chat - Cookie session authentication
# AI chat assistant using Django Channels
- id: "django:ws:chat"
version: "v0.40.0"
upstream:
url: "${BACKEND_URL}"
preserve_host: false
match:
url: "https://api.example.com/ws/chat/<**>"
methods:
- GET
- OPTIONS
authenticators:
- handler: cookie_session
authorizer:
handler: allow
mutators:
- handler: header
errors:
- handler: json
Reference in New Issue View Git Blame Copy Permalink