kong-oidc

A Kong plugin for implementing the OpenID Connect Relying Party (RP) functionality

$ luarocks install kong-oidc

kong-oifc is a Kong pluhin for implementing the OpenID Connect Relying Party.

When used as an OpenID Connect Relying Party it authenticates users against an OpenID Connect Provider using OpenID Connect Discovery and the Basic Client Profile (i.e. the Authorization Code flow).

It maintains sessions for authenticated users by leveraging lua-resty-session thus offering a configurable choice between storing the session state in a client-side browser cookie or use in of the server-side storage mechanisms shared-memory|memcache|redis.

It supports server-wide caching of resolved Discovery documents and validated Access Tokens.

It can be used as a reverse proxy terminating OAuth/OpenID Connect in front of an origin server so that the origin server/services can be protected with the relevant standards without implementing those on the server itself.

Versions

1.1.0-06 years ago299,757 downloads
1.0.4-07 years ago5,058 downloads
1.0.3-07 years ago1,459 downloads
1.0.2-07 years ago1,454 downloads
1.0.1-07 years ago2,681 downloads
1.0.0-07 years ago283 downloads

Dependencies

Dependency for

JWKS Aware OAuth/JWT Access token validator, oauth-jwks-validator

Manifests