Top Level Namespace
Defined Under Namespace
Modules: Verikloak
Instance Attribute Summary collapse
-
#clock_skew_leeway ⇒ Integer
Reserved leeway (seconds) for exp/nbf (handled in core).
-
#disabled ⇒ Boolean
Explicitly disable the middleware (pass-through mode).
-
#enforce_claims_consistency ⇒ Hash
Mapping of header keys to claim keys (e.g., { email: :email }).
-
#enforce_header_consistency ⇒ Boolean
When both headers exist, require equality.
-
#logger ⇒ Logger?
Optional logger for audit tags.
-
#prefer_forwarded ⇒ Boolean
Prefer X-Forwarded-Access-Token over Authorization.
-
#require_forwarded_header ⇒ Boolean
Require X-Forwarded-Access-Token to be present.
-
#strip_suspicious_headers ⇒ Boolean
Strip X-Auth-Request-* headers before downstream.
-
#trusted_proxies ⇒ Array<String, Regexp, Proc>
Allowlist of trusted proxy peers.
-
#xff_strategy ⇒ Symbol
:rightmost or :leftmost peer selection from XFF.
Instance Attribute Details
#clock_skew_leeway ⇒ Integer
Returns reserved leeway (seconds) for exp/nbf (handled in core).
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#disabled ⇒ Boolean
Returns explicitly disable the middleware (pass-through mode).
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#enforce_claims_consistency ⇒ Hash
Returns mapping of header keys to claim keys (e.g., { email: :email }).
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#enforce_header_consistency ⇒ Boolean
Returns when both headers exist, require equality.
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#logger ⇒ Logger?
Returns optional logger for audit tags.
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#prefer_forwarded ⇒ Boolean
Returns prefer X-Forwarded-Access-Token over Authorization.
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#require_forwarded_header ⇒ Boolean
Returns require X-Forwarded-Access-Token to be present.
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#strip_suspicious_headers ⇒ Boolean
Returns strip X-Auth-Request-* headers before downstream.
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#trusted_proxies ⇒ Array<String, Regexp, Proc>
Returns allowlist of trusted proxy peers.
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |
#xff_strategy ⇒ Symbol
Returns :rightmost or :leftmost peer selection from XFF.
27 |
# File 'lib/verikloak/bff/configuration.rb', line 27 require 'verikloak/header_sources' |