lua-resty-openidc

A library for NGINX implementing the OpenID Connect Relying Party (RP) and the OAuth 2.0 Resource Server (RS) functionality

$ luarocks install lua-resty-openidc

lua-resty-openidc is a library for NGINX implementing the OpenID Connect Relying Party (RP) and the OAuth 2.0 Resource Server (RS) functionality.

When used as an OpenID Connect Relying Party it authenticates users against an OpenID Connect Provider using OpenID Connect Discovery and the Basic Client Profile (i.e. the Authorization Code flow). When used as an OAuth 2.0 Resource Server it can validate OAuth 2.0 Bearer Access Tokens against an Authorization Server or, in case a JSON Web Token is used for an Access Token, verification can happen against a pre-configured secret/key .

It maintains sessions for authenticated users by leveraging lua-resty-session thus offering a configurable choice between storing the session state in a client-side browser cookie or use in of the server-side storage mechanisms shared-memory|memcache|redis.

It supports server-wide caching of resolved Discovery documents and validated Access Tokens.

It can be used as a reverse proxy terminating OAuth/OpenID Connect in front of an origin server so that the origin server/services can be protected with the relevant standards without implementing those on the server itself.

Versions

1.9.0-114 days ago(revision: 2)3,785 downloads
1.8.0-11 year ago351,037 downloads
1.7.6-33 years ago577,304 downloads
1.7.6-23 years ago(revision: 3)193 downloads
1.7.6-13 years ago(revision: 2)10,184 downloads
1.7.5-14 years ago338,311 downloads
1.7.4-15 years ago534,743 downloads
1.7.3-15 years ago27,540 downloads
1.7.2-17 years ago497,195 downloads
1.7.1-17 years ago21,624 downloads
1.7.0-27 years ago10,137 downloads
1.6.1-18 years ago41,465 downloads
1.6.0-18 years ago278,197 downloads
1.5.4-18 years ago2,162 downloads
1.5.3-18 years ago9,688 downloads
1.5.2-18 years ago1,786 downloads
1.5.1-18 years ago578 downloads
1.5.0-18 years ago194 downloads
1.4.1-18 years ago5,939 downloads
1.4.0-18 years ago14,329 downloads
1.3.2-19 years ago1,896 downloads
1.3.1-19 years ago1,598 downloads
1.3.0-29 years ago1,856 downloads
1.2.3-19 years ago2,899 downloads
1.2.1-19 years ago322 downloads
1.2.0-110 years ago245 downloads

Dependencies

lua >= 5.1
lua-resty-jwt >= 0.2.0

Dependency for

amber-apigw, Apache APISIX, apisix, as-kong-oidc, comvita-kong-oidc, fullscript-kong-oidc, kong-enhanced-oidc, kong-o2b-ticketing, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc, kong-oidc-adfs, kong-oidc-auth, kong-oidc-by-prashanth, kong-oidc-forward-host, kong-oidc-google-groups, kong-oidc-maryucha, kong-oidc-ng, kong-oidc-test, kong-oidc-v2, kong-oidc-v3, kong-oidc-ws-rbac, kong-openid-connect, kong-openid-v3, kong-openidconnect-code-flow-v3, kong-plugin-jwt-blacklist, kong-plugin-jwt-verifier, kong-plugin-oauth2-audience, kong-plugins-openidc, lua-resty-keycloak, lzq-kong-oidc, magic-apigw, nx-kong-oidc

Labels

Manifests