lua-resty-openidc

A library for NGINX implementing the OpenID Connect Relying Party (RP) and the OAuth 2.0 Resource Server (RS) functionality

$ luarocks install lua-resty-openidc

lua-resty-openidc is a library for NGINX implementing the OpenID Connect Relying Party (RP) and the OAuth 2.0 Resource Server (RS) functionality.

When used as an OpenID Connect Relying Party it authenticates users against an OpenID Connect Provider using OpenID Connect Discovery and the Basic Client Profile (i.e. the Authorization Code flow). When used as an OAuth 2.0 Resource Server it can validate OAuth 2.0 Bearer Access Tokens against an Authorization Server or, in case a JSON Web Token is used for an Access Token, verification can happen against a pre-configured secret/key .

It maintains sessions for authenticated users by leveraging lua-resty-session thus offering a configurable choice between storing the session state in a client-side browser cookie or use in of the server-side storage mechanisms shared-memory|memcache|redis.

It supports server-wide caching of resolved Discovery documents and validated Access Tokens.

It can be used as a reverse proxy terminating OAuth/OpenID Connect in front of an origin server so that the origin server/services can be protected with the relevant standards without implementing those on the server itself.

Versions

1.8.0-1102 days ago52,358 downloads
1.7.6-31 year ago464,656 downloads
1.7.6-21 year ago(revision: 3)167 downloads
1.7.6-11 year ago(revision: 2)9,268 downloads
1.7.5-13 years ago318,888 downloads
1.7.4-14 years ago527,547 downloads
1.7.3-14 years ago27,389 downloads
1.7.2-15 years ago473,462 downloads
1.7.1-15 years ago21,519 downloads
1.7.0-26 years ago9,804 downloads
1.6.1-16 years ago38,187 downloads
1.6.0-16 years ago265,190 downloads
1.5.4-16 years ago2,126 downloads
1.5.3-16 years ago9,664 downloads
1.5.2-17 years ago1,755 downloads
1.5.1-17 years ago561 downloads
1.5.0-17 years ago166 downloads
1.4.1-17 years ago2,615 downloads
1.4.0-17 years ago10,543 downloads
1.3.2-17 years ago1,843 downloads
1.3.1-17 years ago1,581 downloads
1.3.0-27 years ago1,841 downloads
1.2.3-18 years ago2,832 downloads
1.2.1-18 years ago310 downloads
1.2.0-18 years ago220 downloads

Dependencies

lua >= 5.1
lua-resty-jwt >= 0.2.0

Dependency for

amber-apigw, apisix, Apache APISIX, as-kong-oidc, comvita-kong-oidc, fullscript-kong-oidc, kong-enhanced-oidc, kong-o2b-ticketing, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc-adfs, kong-oidc-auth, kong-oidc-by-prashanth, kong-oidc-forward-host, kong-oidc-google-groups, kong-oidc-maryucha, kong-oidc-ng, kong-oidc-test, kong-oidc-v2, kong-oidc-v3, kong-oidc-ws-rbac, kong-openid-v3, kong-plugin-jwt-blacklist, kong-plugin-jwt-verifier, kong-plugin-oauth2-audience, kong-plugins-openidc, lua-resty-keycloak, lzq-kong-oidc, magic-apigw, nx-kong-oidc

Labels

Manifests