Exception from plugins:jwt:global = true

peter.wallstedt · January 27, 2020, 9:01am

I’ve configured my Kong like this:

plugins:
jwt:
enabled: true
# If global=true, all routes will be protected by jwt
global: true

How could I add a service behind Kong that does not use JWT tokens?
We have a /token endpoint used to hand out JWT tokens for the other APIs, so it would need an exception from the global JWT configuration. How is that done?

I would like to be able to keep the plugin global, forcing auth by JWT unless explicitly specified.

hbagdi · January 27, 2020, 4:29pm

You can’t use a global plugin in this case. You will need to enable the plugin for each route/service that you want to protect via JWT.

peter.wallstedt · January 28, 2020, 8:06am

Ok, thanks! Not the news I was hoping for but still - thanks for a quick response!

Topic		Replies	Views
Kong 1.3.0 and JWT Validation Questions	0	306	September 13, 2019
JWT Plugin and Route Exclusion	0	722	February 5, 2018
Remove JWT plugin added globally Questions	9	1118	April 11, 2019
Need to have anonymous routing through jwt global plugin urgently Questions	14	1386	March 9, 2020
Global plugin oauth2 can not visit /oauth2/token Questions	1	350	September 29, 2018

Exception from plugins:jwt:global = true

Related Topics