From 93c558786f577716a4b1a176e93c44723b57c240 Mon Sep 17 00:00:00 2001 From: Bolke de Bruin <bolke@xs4all.nl> Date: Wed, 19 Aug 2020 14:44:53 +0200 Subject: [PATCH] Add description on endpoint --- README.md | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/README.md b/README.md index 7379b80..210004b 100644 --- a/README.md +++ b/README.md @@ -87,6 +87,7 @@ security: # make sure to share this amongst different pods PAATokenSigningKey: thisisasessionkeyreplacethisjetzt PAATokenEncryptionKey: thisisasessionkeyreplacethisjetzt + UserTokenEncryptionKey: thisisasessionkeyreplacethisjetzt ``` ## Testing locally A convenience docker-compose allows you to test the RDPGW locally. It uses [Keycloak](http://www.keycloak.org) @@ -106,6 +107,14 @@ and RDP file will download to your desktop. This file can be opened by one of the remote desktop clients and it will try to connect to the gateway and desktop host behind it. +## Integration +The gateway exposes an endpoint for the verification of user tokens at +https://yourserver/tokeninfo . The query parameter is 'access_token' so +you can just do a GET to https://yourserver/tokeninfo?access_token=<token> . +It will return 200 OK with the decrypted token. + +In this way you can integrate, for example, it with [pam-jwt](https://github.com/bolkedebruin/pam-jwt). + ## TODO * Integrate Open Policy Agent * Integrate GOKRB5 -- GitLab