I don’t want to send the token to the upstream endpoint. Is there any way to do it?
I’ve set the --enable-authorization-header=false but it is sending the token. What does this config do?
I can see the following:
“On protected resources, the upstream endpoint will receive a number of headers added by the proxy, along with custom claims, like this:
Does the gatekeeper always add this headers? Can I have any control on it?