dapr
/
docs
mirror of https://github.com/dapr/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update daprdocs/content/en/reference/components-reference/supported-middleware/middleware-oauth2clientcredentials.md 

Co-authored-by: Alice Gibbons <alicejgibbons@gmail.com>
Signed-off-by: Mark Fussell <markfussell@gmail.com>
This commit is contained in:
Mark Fussell 2025-08-28 09:50:33 -07:00 committed by GitHub
parent 60bee1e2e9
commit 78bd3634a7
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
daprdocs/content/en/reference/components-reference/supported-middleware/middleware-oauth2clientcredentials.md
View File

@ -81,6 +81,10 @@ The `pathFilter` field allows you to selectively apply OAuth2 authentication bas
### Example: Separate read-only and admin user access
In the following configuration:
- Requests to `/api/users/*` endpoints receive tokens with a read-only user scopes
- Requests to `/api/admin/*` endpoints receive tokens with full admin scopes
This reduces security risk by preventing unnecessary privilege access and limiting the blast radius of compromised tokens.
```yaml
# User with read-only access scope
apiVersion: dapr.io/v1alpha1