lua-resty-openidc
lua-resty-openidc copied to clipboard
zmartzone
OpenID Connect Relying Party and OAuth 2.0 Resource Server implementation in Lua for NGINX / OpenResty
When the `unauth_action` parameter is set to `pass` or `deny`, the `authenticate()` method will return a non-nil value for `err` in certain circumstances (e.g. no existing authentication, or expired refresh...
###### Environment - Image version: openresty/openresty:1.19.9.1-2-alpine - OpenID Connect provider : ADFS ###### Expected behaviour Site won't freeze ###### Actual behaviour we are a ReactJS application with OIDC and we...
See also #190 which I think ultimately may have the same root cause. `lua-resty-openidc` seems to assume that the locking mechanism in `lua-resty-session` keeps information stored in the session consistent...
I am using Azure AD as IDP. And the configuration is as follows: sso_refresh_session_interval: 3600 access_token_expires_in: 540 Actual Behavior: Access token gets refreshed correctly for 1 hour. After 1 hour,...
Hi! Could you help me please? Is it possible to send Authorization header to app behind the nginx? Thank you!
Hi guys, My problem is very similar to this(#190). I send a request When access token expiress. But on some of my pages multiple requests are sent to the backend....
I have been facing a strange issue while trying to use server side session storage adapters with this package, which results in a "session locked" error when using the shm...
I've observed that once silent auth is disabled (`refresh_session_interval=nil`) then no validation comes for id_token. You can use it till session's end life, which can be adjusted by `session_cookie_lifetime` variable,...
this adds a function that can be used as lua content handler for a frontchannel logout URI. see also #308
Hi There, We have been running lua-resty older version for a very long time and today suddenly we are seeing this issue. We haven't made any changes to any installation...
