question

TaB-8489 avatar image
0 Votes"
TaB-8489 asked TaB-8489 commented

Does AGIC support JWT validation?

Team,

We need to perform JWT Oauth Token validation for all ingress activities in aks.

Nginx support this feature through

location / { proxy_pass: }

Or

annotations: nginx.ingress.kubernetes.io/auth-url:

Does Application Gateway Ingress Controller(standard v2 sku) supports this functionality.

azure-kubernetes-serviceazure-application-gateway
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

I am investigating it and will get back to you in sometime. Thanks for your patience.

0 Votes 0 ·

1 Answer

karishmatiwari-msft avatar image
0 Votes"
karishmatiwari-msft answered TaB-8489 commented

Hi @TaB-8489

I got a response from the product team that "OAuth is not currently supported on AppGW, but is on their roadmap. Until they support it on AppGW, they won't have support for it on AGIC. They will be updating the GitHub thread once it's available on AppGW.

There is a feature request open here: https://github.com/Azure/application-gateway-kubernetes-ingress/issues/860

However, I did find an article which talks about using api management service like APIM or a service mesh solution with AGIC to achieve it.
https://medium.com/@jw_ng/using-azure-application-gateway-with-api-management-service-f9b9b2cd1731

You can use the validate-jwt policy in APIM and this feature is available on Consumption tier.



Please 'Accept' as answer if it helped, so that it can help others looking for same information get to this answer faster.


· 10
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@karishmatiwari-msft, Hey Karishma, thanks for sharing. Does consumption base sku can help with these functionalities.

0 Votes 0 ·

@TaB-8489 I got a response from the product team that "OAuth is not currently supported on AppGW, but is on their roadmap. Until we support it on AppGW, we won't have support for it on AGIC. They will be updating the GitHub thread once it's available on AppGW.

0 Votes 0 ·
TaB-8489 avatar image TaB-8489 karishmatiwari-msft ·

@karishmatiwari-msft , actually I have checked that APIM and it supports jwt validation. My question is does consumption sku of APIM support jwt or not.

0 Votes 0 ·
Show more comments