From 54361457c86b3a15c6ac8924e135f588a53a6a72 Mon Sep 17 00:00:00 2001
From: yalh76 <yalh@yahoo.com>
Date: Fri, 21 Feb 2020 22:27:02 +0100
Subject: [PATCH] Update access.lua

---
 access.lua | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)

diff --git a/access.lua b/access.lua
index c24ae09..b9de501 100644
--- a/access.lua
+++ b/access.lua
@@ -269,6 +269,29 @@ if conf["skipped_regex"] then
     end
 end
 
+--
+-- 4b. Noauth URLs
+--
+-- If the URL matches one of the `no_auth` in the configuration file,
+-- it means that the URL should be protected by the SSO but no header
+-- has to be sent, even if the user is already authenticated.
+--
+
+if conf["noauth_urls"] then
+    if hlp.is_logged_in() then
+        for _, noauth in ipairs(conf["noauth_urls"]) do
+            if (hlp.string.starts(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), noauth)
+            or  hlp.string.starts(ngx.var.uri..hlp.uri_args_string(), noauth))
+            then
+                logger.debug("Noauth "..ngx.var.uri)
+                return hlp.pass()
+            end
+        end
+    end
+
+end
+
+
 --
 -- 5. Protected URLs
 --