cloudfront-auth
cloudfront-auth copied to clipboard
Widen
An AWS CloudFront Lambda@Edge function to authenticate requests using Google Apps, Microsoft, Auth0, OKTA, and GitHub login
My goal is to have logs of say which Google user viewed the file. Can it be used in this way? The files are not restricted, but you need to...
Having an issue with testing locally using ngrok - here is some more info on my setup: 1) the contents of config-test.json: ``` { "port": 8080, "auth": "y", "lambdaFunction": "LF",...
As a security-minded website owner, I would like to be able to add relevant headers to secure the site, such as `Content-Security-Policy: default-src='self'` and `X-Frame-Options: deny`
i setup okta with cloudfront as per the document but am not able to connect with Okta for authentication got the error, also raised a case with OKTA and got...
[Manual Deployment](https://github.com/Widen/cloudfront-auth/wiki/Manual-Deployment) documentation refers to `cloudfront-http-redirect` AWS Lambda blueprint, that is available in N.Virginia region, but not in the others.However, in other regions serverless app with the very same name...
It seems that Google Groups authorization checks user membership in groups on every HTTP request. This is suboptimal. Should probably check only once before issuing `TOKEN` cookie. Then, in case...
When Google Groups authorization is used and group membership query failed, then user sees "Not permitted" message, which is exactly the same as shown when query succeeded, but the user...
In addition to Google. MSFT, etc. it would be awesome to have Salesforce in there as well.
I have set the session time to be 3600 seconds, when I login to the cloudfront url after 1 hour i.e. 3600 sec instead of redirecting me to the identity...
For continuous delivery reasons and improved security it would be better the secrets and other variables could be externalized. The variables could be passed in as environment variables for example.
