Authorization
headers. Without setting the reverse proxy, your backend server can use your Authgear JWKS to verify the request and decode user information from the JWT access token.Authorization
and Cookie
in the HTTP header, verify the token, and respond HTTP 200 with X-Authgear-
headers for session validity, the user id...etc.