From 93c558786f577716a4b1a176e93c44723b57c240 Mon Sep 17 00:00:00 2001
From: Bolke de Bruin <bolke@xs4all.nl>
Date: Wed, 19 Aug 2020 14:44:53 +0200
Subject: [PATCH] Add description on endpoint

---
 README.md | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/README.md b/README.md
index 7379b80..210004b 100644
--- a/README.md
+++ b/README.md
@@ -87,6 +87,7 @@ security:
   # make sure to share this amongst different pods
   PAATokenSigningKey: thisisasessionkeyreplacethisjetzt
   PAATokenEncryptionKey: thisisasessionkeyreplacethisjetzt
+  UserTokenEncryptionKey: thisisasessionkeyreplacethisjetzt
 ```
 ## Testing locally
 A convenience docker-compose allows you to test the RDPGW locally. It uses [Keycloak](http://www.keycloak.org) 
@@ -106,6 +107,14 @@ and RDP file will download to your desktop. This file can be opened by one
 of the remote desktop clients and it will try to connect to the gateway and
 desktop host behind it.
 
+## Integration
+The gateway exposes an endpoint for the verification of user tokens at
+https://yourserver/tokeninfo . The query parameter is 'access_token' so
+you can just do a GET to https://yourserver/tokeninfo?access_token=<token> .
+It will return 200 OK with the decrypted token.
+
+In this way you can integrate, for example, it with [pam-jwt](https://github.com/bolkedebruin/pam-jwt).
+
 ## TODO
 * Integrate Open Policy Agent
 * Integrate GOKRB5
-- 
GitLab