In order to enable SSO Authentication and Authorization in Temporal UI, we configured the temporal-server to use JWT Claim Mapper.
We confirmed that it works well in the Temporal UI.
However, we are experiencing authentication and authorization failures in the worker during the frontend service connection process because there is no JWT token.
We would like the worker to run without permission verification within the same VPC.
We discovered that internal-frontend feature was added in v1.20.0 for this issue.We noticed that the internal-frontend configuration is missing in the helm-chart.
I also struggled to implement the Authorization in Temporal UI with the helm chart. I was able to set jwt authorization related envs in server-deployment.yaml. SSO Authentication is working but the authorization didn’t work.
It will be great if you can kindly share what you did.
I realize that this is an old post, but I wanted to mention that our helm-chart repository now supports internal-frontend. This was added in PR #602, submitted by a community member, and I merged it into main last night.
