Add details on how files are generated for basic and jwt auth

shaun-nx · shaun-nx · commit 33e2916a894e · 2025-11-26T11:07:26.000Z
diff --git a/docs/proposals/authentication-filter.md b/docs/proposals/authentication-filter.md
@@ -469,6 +469,10 @@ spec:
 
 #### Generated NGINX config
 
+Note: For Basic Auth, NGF will store the file used by `auth_basic_user_file` in `/etc/nginx/secrets/`
+The full path will use the `name` and `key` of the secret referenced by `AuthenticationFilter`
+In this case, the full path will be `/etc/nginx/secrets/basic-auth-users/htpasswd`
+
 ```nginx
 http {
     upstream backend_default {
@@ -619,6 +623,10 @@ Below are `two` potential NGINX configurations based on the mode used.
 
 1. NGINX Config when using `Mode: File` (i.e. locally referenced JWKS key)
 
+Note: For JWT Auth, NGF will store the file used by `auth_jwt_key_file` in `/etc/nginx/keys/`
+The full path will use the `name` and `key` of the secret referenced by `AuthenticationFilter`
+In this case, the full path will be `/etc/nginx/keys/jwt-keys-secure/jwks.json`
+
 ```nginx
 http {
     upstream backend_default {
