I have haproxy which runs fine, but we have backend, which validate token against our identity service.
I want to move that logic to HAProxy, where we can run some python or sh script, and get the user name and its ldap groups.
Then we don't have to check for token in each services. We just have to check it the user request has that username and ldapgroup headers or not. If its not, backend will not server the request.
I was checking on google, found some leads like there is add-header and set-header to update the headers info in request or response.
I also found the external_check which will execute script and take decision.
What I am looking for is combination of add-header/set-header and external-check? Where it will execute the script and set the headers.
