Skip to content

feat: add passthrough_auth option for forwarding client Authorization header #687

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
salmanap merged 4 commits into from
Jan 14, 2026
Merged

feat: add passthrough_auth option for forwarding client Authorization header #687

salmanap merged 4 commits into from
Jan 14, 2026

Conversation

@tqtensor
Copy link
Contributor

@tqtensor tqtensor commented Jan 13, 2026

Summary

This PR introduces the passthrough_auth option for model providers, allowing Plano to forward the client's Authorization header directly to upstream LLM services or proxies.

Changes

  • Updated arch_config_schema.yaml to include passthrough_auth (boolean).
  • Modified Python config generator to handle validation and warn if both passthrough_auth and access_key are provided.
  • Updated Rust crates (common and llm_gateway) to implement the header forwarding logic.
  • Added documentation in supported_providers.rst explaining the feature and use cases.
  • Included a test configuration config/test_passthrough.yaml.

Verification Results

  • Tested with a local LiteLLM instance where the virtual key was successfully forwarded.
  • Verified that a warning is issued when both passthrough_auth and access_key are set.
  • Ensured existing tests pass.

Closes #686

@salmanap
Copy link
Contributor

salmanap commented Jan 13, 2026

Thank you @tqtensor - this is a well thought out feature. Thanks for your contribution. We will take this change in. @adilhafeez will run the workflows for testing and perhaps offer a couple of small code review comments

adilhafeez
adilhafeez reviewed Jan 13, 2026
View reviewed changes
Copy link
Contributor

@adilhafeez adilhafeez left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Only one minor comment - looks good overall. Thanks for your contribution @tqtensor

@adilhafeez
Copy link
Contributor

adilhafeez commented Jan 13, 2026

Created another PR to force run gh actions with api keys - #689

@adilhafeez
Copy link
Contributor

adilhafeez commented Jan 13, 2026

hey @tqtensor I just pushed a fix to your PR

@tqtensor
Copy link
Contributor Author

tqtensor commented Jan 14, 2026

Thanks @salmanap and @adilhafeez for the quick review and help! I'm back online now and will check the updates.

@salmanap
Copy link
Contributor

salmanap commented Jan 14, 2026

Btw @tqtensor would love for you to join our discord. Love contributions like these and hope to keep on building together

adilhafeez
adilhafeez reviewed Jan 14, 2026
View reviewed changes
@salmanap salmanap merged commit 4d53297 into katanemo:main Jan 14, 2026
20 of 31 checks passed
@adilhafeez adilhafeez mentioned this pull request Jan 15, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@adilhafeez adilhafeez adilhafeez approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Support passthrough authentication for LLM providers

3 participants

@tqtensor @salmanap @adilhafeez