lua-resty-openidc

A library for NGINX implementing the OpenID Connect Relying Party (RP) and the OAuth 2.0 Resource Server (RS) functionality

$ luarocks install lua-resty-openidc

lua-resty-openidc is a library for NGINX implementing the OpenID Connect Relying Party (RP) and the OAuth 2.0 Resource Server (RS) functionality.

When used as an OpenID Connect Relying Party it authenticates users against an OpenID Connect Provider using OpenID Connect Discovery and the Basic Client Profile (i.e. the Authorization Code flow). When used as an OAuth 2.0 Resource Server it can validate OAuth 2.0 Bearer Access Tokens against an Authorization Server or, in case a JSON Web Token is used for an Access Token, verification can happen against a pre-configured secret/key .

It maintains sessions for authenticated users by leveraging lua-resty-session thus offering a configurable choice between storing the session state in a client-side browser cookie or use in of the server-side storage mechanisms shared-memory|memcache|redis.

It supports server-wide caching of resolved Discovery documents and validated Access Tokens.

It can be used as a reverse proxy terminating OAuth/OpenID Connect in front of an origin server so that the origin server/services can be protected with the relevant standards without implementing those on the server itself.

Versions

1.8.0-1257 days ago153,999 downloads
1.7.6-32 years ago501,512 downloads
1.7.6-22 years ago(revision: 3)174 downloads
1.7.6-12 years ago(revision: 2)9,611 downloads
1.7.5-13 years ago327,819 downloads
1.7.4-14 years ago531,777 downloads
1.7.3-14 years ago27,410 downloads
1.7.2-15 years ago490,731 downloads
1.7.1-16 years ago21,558 downloads
1.7.0-26 years ago9,912 downloads
1.6.1-16 years ago40,061 downloads
1.6.0-16 years ago273,991 downloads
1.5.4-17 years ago2,153 downloads
1.5.3-17 years ago9,676 downloads
1.5.2-17 years ago1,762 downloads
1.5.1-17 years ago569 downloads
1.5.0-17 years ago183 downloads
1.4.1-17 years ago3,266 downloads
1.4.0-17 years ago11,534 downloads
1.3.2-17 years ago1,856 downloads
1.3.1-18 years ago1,588 downloads
1.3.0-28 years ago1,847 downloads
1.2.3-18 years ago2,877 downloads
1.2.1-18 years ago315 downloads
1.2.0-18 years ago225 downloads

Dependencies

lua >= 5.1
lua-resty-jwt >= 0.2.0

Dependency for

amber-apigw, apisix, Apache APISIX, as-kong-oidc, comvita-kong-oidc, fullscript-kong-oidc, kong-enhanced-oidc, kong-o2b-ticketing, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc-adfs, kong-oidc-auth, kong-oidc-by-prashanth, kong-oidc-forward-host, kong-oidc-google-groups, kong-oidc-maryucha, kong-oidc-ng, kong-oidc-test, kong-oidc-v2, kong-oidc-v3, kong-oidc-ws-rbac, kong-openid-v3, kong-plugin-jwt-blacklist, kong-plugin-jwt-verifier, kong-plugin-oauth2-audience, kong-plugins-openidc, lua-resty-keycloak, lzq-kong-oidc, magic-apigw, nx-kong-oidc

Labels

Manifests