Skip to content

call-authentication

Directory actions

More options

Directory actions

More options

Latest commit

 

History

History
 
 

call-authentication

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
apis.yaml
apis.yaml
 
 
membrane.cmd
membrane.cmd
 
 
membrane.sh
membrane.sh
 
 
proxies.xml
proxies.xml
 
 

README.md

Orchestrating Authentication

To simplify client access to secured backends, authentication can be handled transparently by the API gateway.

The gateway can orchestrate various authentication methods—Basic Auth, API keys, OAuth2, or, as in this example, cookie-based authentication.

This example demonstrates how to delegate the login step using the call plugin to retrieve a SESSION cookie and inject it automatically into subsequent requests.

Running the Example

  1. Start the Router

    ./membrane.sh  # Linux/Mac  
membrane.bat   # Windows

  2. Test the flow:

    curl -i http://localhost:2000

    Should return:

    HTTP/1.1 200 OK

Success!

Check proxies.xml to see the <call> + cookie logic.