oauth2_proxy/docs/6_request_signatures.md
Henry Jenkins 8b61559b8d Fix links in docs
- Fixed a bunch of references to the repo, which were 404ing
- Fixed a couple of things that 301/302ed
- Fixed some in page references
2019-08-11 16:07:03 +01:00

938 B

layout title permalink nav_order
default Request Signatures /request-signatures 6

Request signatures

If signature_key is defined, proxied requests will be signed with the GAP-Signature header, which is a Hash-based Message Authentication Code (HMAC) of selected request information and the request body [see SIGNATURE_HEADERS in oauthproxy.go]({{ site.gitweb }}/oauthproxy.go).

signature_key must be of the form algorithm:secretkey, (ie: signature_key = "sha1:secret0")

For more information about HMAC request signature validation, read the following: