lua-resty-openidc
lua-resty-openidc copied to clipboard
zmartzone
OpenID Connect Relying Party and OAuth 2.0 Resource Server implementation in Lua for NGINX / OpenResty
Question related to token validation: In the example given: ``` if res.scope ~= "edit" then ngx.exit(ngx.HTTP_FORBIDDEN) end ``` How would the user be redirect back to relevant openid-connect/auth end point...
This is a question. I have seen that there is pull request [489](https://github.com/zmartzone/lua-resty-openidc/pull/489) to change lua-resty-session to 4.0.3. Can you please give a guesstimate when this should be expected to...
Hi, I have the "no session state found" problem. Keycloak seems to set the [same site policy to strict](https://github.com/keycloak/keycloak/issues/19886) and it seems google Chrome will enforce that at some point,...
Why is enc_id_token separated from id_token? It looks like its being set the same way [here](https://github.com/zmartzone/lua-resty-openidc/blob/master/lib/resty/openidc.lua#L1395). I assume `enc` means encrypted? It doesn't seem so as for how it is...
I am doing local testing using Docker and Keycloak. I want to test the whole setup using self-signed certificates to replicate a production environment. The lua HTTP script seems to...
###### Environment - lua-resty-openidc version 1.7.6 - JupyterHub OAuth Provider (https://jupyterhub.readthedocs.io/en/stable/explanation/oauth.html) ###### Expected behaviour The OAuth provider I am using mandates that the redirect_uri be a relative path (`/user/${user}/oauth_callback`), and...
###### Environment - lua-resty-openidc version (e.g. 1.7.6) - OpenID Connect provider (e.g. Keycloak, Azure AD) lua-resty-openidc version 1.7.6 OpenID Connect provider keycloak ###### Expected behaviour Go to https://172.18.157.158:19999/ to jump...
Hi there, I think you didn't release the latest version 1.7.6 to opm yet! not sure if that was intentional. Also this commit is needed https://github.com/zmartzone/lua-resty-openidc/commit/4b9316403e1d6a162aecea86c466f50fe78232e8 to be released since...
###### Environment - lua-resty-openidc version: 1.7.6-3 - OpenID Connect provider: Keycloak 22.0.0 ###### Expected behaviour logout should revoke access and refresh tokens successfully with keycloak when using client secret signed...
