In my case I would like to implement custom realm to handle authorization token generated by another identity server. And my question is whether it is possible to obtain token from request parameter because i'm building app using iframes from Kibana, and I think attaching some custom header to iframe request is impossible?
I think you can do this with a reverse proxy to add the authentication headers.
I have walked through using an nginx proxy to auto-authenticate kibana hosted inside an iframe. nginx attaches a username and password to the custom header, which works, though I did not introduce a custom auth realm into the mix.
If your kibana and hosted iframe code is on the same domain, you might also be able to grab and set a cookie.
Here are a couple additional links that might prove useful:
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.