vincbeck commented on issue #51362: URL: https://github.com/apache/airflow/issues/51362#issuecomment-2955826265
> [@vincbeck](https://github.com/vincbeck) Thank you for the summary and sorry to be pain but I still can't get my head around it. > > Using Fab Auth Manager API makes sense when you want to generate the JWT token using username and password. As I mentioned earlier, I want to pass a token generated by keycloak which uses RS256 alg. I have tried configuring Airflow to use RS256 but its still looking for jwt_secret which is needed for a symmetric algorithm like HS512. > > Also from the other closed issue, the reporter has used > > ``` > export AIRFLOW__CORE__AUTH_MANAGER="my.custom.FabAuthManager" > export AIRFLOW__FAB__AUTH_BACKENDS="my.custom.api_backend" > ``` > > Do I need to provide custom implementation for `AIRFLOW__CORE__AUTH_MANAGER` when I am passing a custom implementation for `AIRFLOW__FAB__AUTH_BACKENDS`? This is not supported today. If you want to use a token generated by Keycloak to access Airflow API you need to implement your own auth manager or wait for the future (but soon) Keycloak Auth manager. Keycloak auth manager implementation is currently in progress -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
