One thing I should have mentioned is that the entity making the request is:
A) a non-human user
B) will always be unauthenticated / not have any credentials. I am simply granting permissions to a very specific unauthenticated, but trusted, request.
In your example, you have a hard-coded string for the Authorization header value … rather than hard-coding it, would there be a way to dynamically generate it? or have caddy read from a file?
Create a feature request by clicking here, describe exactly what you want to accomplish and who is that “non-human” user. Details matter here. Please reference this topic. I will try helping you out. It is doable.
I think what I’m trying to accomplish is quite “custom” and not sure if it makes the most sense to add to something such as caddy-authorize … Also, given our deadlines, we simply went with writing a simple proxy server in NodeJS for now. But switching to a proper proxy server may be something we do in the future.