Skip to content

kaz/nginx-njs-oidc-proxy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
backend
backend
 
 
nginx
nginx
 
 
LICENCE
LICENCE
 
 
README.md
README.md
 
 
docker-compose.yaml
docker-compose.yaml
 
 

Repository files navigation

nginx-njs-oidc-proxy

An alternative of oauth2_proxy implemented with njs scripting language. There is a similar implementation for NGINX Plus, but this can also work on open source NGINX.

Try It!

  1. Edit nginx/js/config.js and fill clientId and clientSecret
    • Create OAuth 2.0 Client ID here
    • Add http://localhost/oauth2/callback to Authorized redirect URIs
  2. Run docker-compose up -d
  3. Open http://localhost/
  4. Login with your gmail account
  5. It works!

Tips

  • You must set cookieSecret on production environment.
  • You can implement custom auth-strategy, see nginx/js/handler.js and nginx/js/acl.js.
  • You can pass some user profile to backend, see an end of authHandler function.
  • Initial implementation uses Google as an OpenID provider. Other providers also can be used.

About

An alternative of oauth2_proxy implemented with njs scripting language

Resources

Readme

License

MIT license
Activity

Stars

8 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages