Decorating headers after JWT authentication
I’m toying with the idea of terminating JWT after gateway ingress, and looking to see what sort of attack patterns would result.
Prerequisites:
Communication between services would use mTLS to encrypt and verify traffic
The target platfor… Continue reading Decorating headers after JWT authentication