We’re looking into using role based redirects with an external JWT provider for a project - https://docs.netlify.com/visitor-access/role-based-access-control/#external-providers. The docs are a bit short so to fully understand how it works we wanted to set up a quick test. I’ve created a test site and added some redirect rules so access to one page requires a role. I’ve added a JWT secret in Netlify. From what I’ve read, it seems like the value of the JWT ultimately is saved in a cookie called nf_jwt - so as a quick test I created a JWT with the required role and detail and saved it to a cookie with this name and navigated to the gated page - but I’m not allowed in. Instead it hits the lower redirect rule to take me to the homepage.
Do you have any further information on this. The docs do not talk about needing to write code to set a cookie called nf_jwt - so is this something that would be taken care of by Netlify. In my mind I thought it would work by setting up a redirect to my app (this is separate to this static site) if you go to a protected page and have no role. From there you would get the JWT and be redirected to the site and would then get in. But I feel like I’m missing something?