The documentation you are viewing is for Dapr v1.6 which is an older version of Dapr. For up-to-date documentation, see the latest version.
Bearer
使用 Bearer 中间件,通过验证 Bearer token 来确保 HTTP 端点的安全
Bearer 中间件在 Web API 上使用 OpenID Connect 来验证 Bearer Token 而无须修改应用程序。 这种设计将认证/授权的关注点从应用中分离出来,因此应用操作者可以采用和配置认证/授权提供者,而不影响应用代码。
配置
apiVersion: dapr.io/v1alpha1
kind: Component
metadata:
name: bearer-token
spec:
type: middleware.http.bearer
version: v1
metadata:
- name: clientId
value: "<your client ID>"
- name: issuerURL
value: "https://accounts.google.com"
元数据字段规范
| 字段 | 详情 | 示例 |
|---|---|---|
| clientId | 你的应用程序的客户端ID,它是作为OpenID Connect平台托管的凭证的一部分创建的 | |
| issuerURL | 服务的URL标识 | "https://accounts.google.com", "https://login.salesforce.com" |
Dapr配置
apiVersion: dapr.io/v1alpha1
kind: Configuration
metadata:
name: appconfig
spec:
httpPipeline:
handlers:
- name: bearer-token
type: middleware.http.bearer
相关链接
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.