sanmen359 commented on issue #1387: URL: https://github.com/apache/apisix-dashboard/issues/1387#issuecomment-772596951
> > I think the `openid-connect` is an auth plugin too. I think we should add the `auth` type in APISIX project. > > After offline discussion, "openid-connect" is not an "auth" plugin. Because it cannot find out the consumer of apisix. > I'm very sorry for the wrong understanding. > > @sanmen359 why you need to bind plugin `openid-connect` to `consumer`? I think this is forbidden. 我希望对 API 进行保护,所以需要对访问 API 的应用进行控制。我研究了一下,发现authz-keycloak 插件是个好选择。I want to protect the API, so I need to control the application accessing the API . I found the "authz keycloak" plug-in a good choice. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
