Kong · Schema
VirtualClusterAuthenticationOauthBearer
Oauth Bearer authentication scheme for the virtual cluster.
API GatewayAI GatewayAI ConnectivityAgent GatewayEvent GatewayMCP RegistryService MeshLLMKafkaKonnectOpen Source
Properties
| Name | Type | Description |
|---|---|---|
| type | string | |
| mediation | string | Methods to mediate authentication: * passthrough - pass authentication from the client through proxy to the backend cluster without any kind of validation * validate_forward - pass authentication from |
| claims_mapping | object | |
| jwks | object | |
| validate | object |
JSON Schema
{
"$schema": "https://json-schema.org/draft/2020-12/schema",
"$id": "#/components/schemas/VirtualClusterAuthenticationOauthBearer",
"title": "VirtualClusterAuthenticationOauthBearer",
"description": "Oauth Bearer authentication scheme for the virtual cluster.",
"type": "object",
"properties": {
"type": {
"type": "string",
"const": "oauth_bearer"
},
"mediation": {
"description": "Methods to mediate authentication:\n* passthrough - pass authentication from the client through proxy to the backend cluster without any kind of\n\n\n validation\n* validate_forward - pass authentication from the client through proxy to the backend cluster.\n\n\n Proxy does the validation before forwarding it to the client.\n* terminate - terminate authentication at the proxy level and originate authentication to the backend cluster\n\n\n using the configuration defined at BackendCluster's authentication.\n SASL auth is not originated if authentication on the backend_cluster is not configured.\n",
"type": "string",
"enum": [
"passthrough",
"validate_forward",
"terminate"
],
"x-speakeasy-unknown-values": "allow"
},
"claims_mapping": {
"$ref": "#/components/schemas/VirtualClusterAuthenticationClaimsMapping"
},
"jwks": {
"$ref": "#/components/schemas/VirtualClusterAuthenticationJWKS"
},
"validate": {
"$ref": "#/components/schemas/VirtualClusterAuthenticationValidate"
}
},
"additionalProperties": false,
"required": [
"type",
"mediation"
]
}