diff options
| -rw-r--r-- | app/middleware/user.go | 3 | ||||
| -rw-r--r-- | etc/envoy/envoy.yaml | 6 |
2 files changed, 5 insertions, 4 deletions
diff --git a/app/middleware/user.go b/app/middleware/user.go index 184bf1a..2865477 100644 --- a/app/middleware/user.go +++ b/app/middleware/user.go @@ -3,7 +3,6 @@ package middleware import ( "net/http" - "github.com/xlgmokha/x/pkg/log" "github.com/xlgmokha/x/pkg/mapper" "gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/app/cfg" "gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/app/domain" @@ -12,8 +11,6 @@ import ( func User() func(http.Handler) http.Handler { return func(next http.Handler) http.Handler { return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { - log.WithFields(r.Context(), log.Fields{"sub": r.Header.Get("x-jwt-claim-sub")}) - next.ServeHTTP(w, r.WithContext(cfg.CurrentUser.With( r.Context(), mapper.MapFrom[http.Header, *domain.User](r.Header), diff --git a/etc/envoy/envoy.yaml b/etc/envoy/envoy.yaml index b483fe9..eb4901a 100644 --- a/etc/envoy/envoy.yaml +++ b/etc/envoy/envoy.yaml @@ -185,7 +185,7 @@ static_resources: header_name: x-jwt-claim-profile-url - claim_name: picture header_name: x-jwt-claim-picture-url - forward: true + forward: false forward_payload_header: x-jwt-payload from_cookies: - id_token @@ -219,6 +219,10 @@ static_resources: "@type": type.googleapis.com/envoy.extensions.filters.http.router.v3.Router suppress_envoy_headers: true route_config: + request_headers_to_remove: + - authorization + - cookie + - user-agent virtual_hosts: - name: local domains: ["*"] |