Missing Authorization header


So Haproxy has this long and great article on how to implement Auth0 that is really neat:

Followed all the steps and were really chuffed, until I discovered that the whole premise of the article is parsing the Authorization header. Imagine my surprise, when I found that Auth0 does not send this header! :-o

I can’t imagine they wrote the whole article (and another older, longer 5 part series), with the same assumption.

Can anyone confirm that:

  • Auth0 can not and will never send the Authorization header
  • Both articles are completely pointless??

And has anyone been able to do oauth from Auth0 authentication in Haproxy? I front Haproxy by an ALB, if that helps (I think not?)