Return groups header
Hi,
I have zitadel running behind oauth2-proxy which sits behind the nginx auth_request (see image). Its running the Auth Code Flow.
My resource server is only reachable through nginx protected through auth request, so I assume I can trust the headers that I receive.
Now, I would like to set the header x-groups containing the users' groups (or roles) from zitadel.
On my resource server I want to verify that the user can perform a query based on the groups header.
Can Zitadel pass the users groups or roles in any header with the auth code?
I have tried to request the "groups" scope as well as the "urn:zitadel:iam:org:projects:roles" scope.
0 Replies