Zero Trust Authentication

Hi guys, I'm thinking of using Cloudflare Zero trust on a new application we're developing, to authenticate users. What are people doing when it comes to local development (not through Cloudflare)? Emulating the CF_Authorization token? I can't seem to find a zero trust "emulator". Cheers!
4 Replies
Cyb3r-Jak3
Cyb3r-Jak3•5mo ago
What are you looking to do with your application? Zero Trust is designed for internal use and not external users signing up for an application.
tx
txOP•5mo ago
Hi @Cyb3r-Jok3 it is an application for only internal use / users. (internal tooling), no sign-up required.
Cyb3r-Jak3
Cyb3r-Jak3•5mo ago
Gotcha. The only thing I can offer is the tests they do with cloudflared tests access tokens but not sure if that is what you need https://github.com/cloudflare/cloudflared/blob/master/ingress/middleware/jwtvalidator_test.go
GitHub
cloudflared/ingress/middleware/jwtvalidator_test.go at master · clo...
Cloudflare Tunnel client (formerly Argo Tunnel). Contribute to cloudflare/cloudflared development by creating an account on GitHub.
tx
txOP•5mo ago
Thanks. It looks like for local development I'll just need to "pretend" to authenticate as a specific user (and not use JWTs), or take a "real" JWT and ignore the expiration / signature locally 🙂
Want results from more Discord servers?
Add your server