Search
varnish-controller7    authentication    impersonate
Varnish Controller 7 Changelog Version 7 Known Issues Upgrading Migrate Installation Previous Versions Versioning License Features System Overview Demo Concepts Agent Maintenance File Router Traffic Router Health VCL RoutingRules Git Tag Files Domain Certificates Roles VCLGroup Rolling Upgrades ACME API Logs Private/Shared Config/ConfigSets Authentication System Admin Regular Users Identity Provider Multi-Factor Authentication Impersonation Sessions Examples Authorization Organization Account Permission Examples CLI CLI Examples CLI Manual User Interface API API examples Invalidations Integrations Monitoring Varnish Statistics Installation Quickstart NATS PostgreSQL Brainz API-GW Agents Routers Containers Identity Provider VCLI Graphical User Interface Mapped Ports Routing Plugins gRPC Troubleshooting Examples Deploying VCL files Change a VCL file Purging multiple paths Banning paths Using Labels Certificates HTTP Routing Routing Decisions Score-based Routing Private Agents Multiple Regions OIDC - Microsoft Entra (Azure AD) Drain Traffic Config/ConfigSet Maintenance File Organizations Controller-UI security settings

Impersonation

System admins can impersonate an organization to operate within its context. While impersonating, all requests are executed as if the system admin belongs to the target organization, with full read and write access to its resources.

Impersonation is available via the CLI and API. UI support is not yet available.

Constraints

  • Only system admins can impersonate.
  • Only one organization can be impersonated at a time. The current impersonation must be stopped before starting another.
  • A system admin cannot impersonate their own organization.
  • Locked organizations cannot be impersonated.

Usage

Starting impersonation switches the session to the target organization context. All subsequent requests operate within that organization until impersonation is stopped, which restores the original session. The whoami endpoint shows whether impersonation is active and which organization is being impersonated.

Manuals
Varnish Enterprise
Varnish Cloud
Varnish Controller
Varnish High Availability
Varnish Custom Statistics
Varnish WAF
Varnish Broadcaster
Varnish Helm Chart
Packages
Docker
Varnish Otel
News
Varnish Controller 7.5.0
Varnish Otel 2.4.0
Denial Of Service in shared VCL deployments
Workspace overflow in HTTP/2 sessions
HTTP/1 absolute URL parsing deficiency
News archive
Cookie Settings Privacy Policy Contact Us Press Branding
®Varnish Software, Wallingatan 12, 111 60 Stockholm, Organization nr. 556805-6203