lua-resty-openidc
lua-resty-openidc copied to clipboard
zmartzone
OpenID Connect Relying Party and OAuth 2.0 Resource Server implementation in Lua for NGINX / OpenResty
#### **Environment** - **lua-resty-openidc** version: `1.8.0` - **OpenID Connect provider**: `Keycloak 25.0.3` - **Session storage**: `PostgreSQL` - **OpenResty version**: `1.25` #### **Use Case** I have two separate applications running with...
https://github.com/zmartzone/lua-resty-openidc/blob/fabf64e29062f5e7658de1cee52f572221203b1e/lib/resty/openidc.lua#L1526
Hello, We noticed this error when working with Keycloak and using multiple tabs in the browser:  Sometimes automatic reauthentication on SSO session expiry does not work. The cause is...
I've configured openresty and this module to redirect web traffic for websites that do not natively support MFA/SSO. I use keycloak as the idp. It works well enough except for...
We are using the Kong and [nokia/kong-oidc](https://github.com/nokia/kong-oidc) plugin to incorporate OIDC authentication. Additionally, we are using lua-resty-openidc and lua-resty-session to store the ID Token in the session. The session is...
Hi there, we've been using the option to pass unauth_action = deny on to check authentication only but not redirect if no session is found (for paths of api endpoints...
Hello, it seems that websocket connections are always blocked, see: https://github.com/ZoeyVid/NPMplus/issues/1606 This is the config used: ``` access_by_lua_block { local opts = { redirect_uri = "/npmplus-oidc/redirect_uri", discovery = "https:///.well-known/openid-configuration", --...
I am using this solution as a reverse proxy to a vendor Single Page Application with an OIDC "Portal" where users login and can select from a number of different...
By default if someone makes a GET request with parameter `&code=...` after authentication against IdP classic error `request to the redirect_uri path but there's no session state found` will be...
Using version `1.7`, I used to inject user token with: ``` ngx.req.set_header("Authorization", "Bearer " .. session.data.enc_id_token) ``` However, when upgraded to `1.8`, the same code give: ``` lua entry thread...
