GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → zmartzone → mod_oauth2

zmartzone / mod_oauth2

Licence: AGPL-3.0 license
OAuth 2.x Resource Server module for the Apache HTTPd web server

Programming Languages

M4
1887 projects
c
50402 projects - #5 most used programming language
Makefile
30231 projects
shell
77523 projects

Labels

oauthoauth2apache-httpdoauth2-resource-serverapache-module

Projects that are alternatives of or similar to mod oauth2

mod fastcgi
FastCGI.com mod_fastcgi apache 2 module fork from http://repo.or.cz/mod_fastcgi.git + last SNAP-0910052141 snapshot
Stars: ✭ 23 (-32.35%)
Mutual labels:  apache-httpd, apache-module
Diber-backend
Delivery Service - Spring Boot / Spring Data Jpa / Hibernate / PostgreSQL / OAuth2 Application
Stars: ✭ 22 (-35.29%)
Mutual labels:  oauth
google-oauth2-web-client
Login with Google using OAuth2 for client-side web app
Stars: ✭ 32 (-5.88%)
Mutual labels:  oauth
materialize-social
Social Login Buttons for MaterializeCSS
Stars: ✭ 50 (+47.06%)
Mutual labels:  oauth
oauther
OAuth 1.0 for Elixir
Stars: ✭ 64 (+88.24%)
Mutual labels:  oauth
casdoor-go-sdk
Go client SDK for Casdoor
Stars: ✭ 37 (+8.82%)
Mutual labels:  oauth
ApiJwtWithTwoSts
Web API authorization, multi-IDP solutions in ASP.NET Core
Stars: ✭ 43 (+26.47%)
Mutual labels:  oauth
example-oidc
OIDC (OpenID Connect) Example for http://openid.net/connect/
Stars: ✭ 221 (+550%)
Mutual labels:  oauth2-resource-server
omniauth-mastodon
OmniAuth strategy for Mastodon
Stars: ✭ 27 (-20.59%)
Mutual labels:  oauth
oidc
Easy to use OpenID Connect client and server library written for Go and certified by the OpenID Foundation
Stars: ✭ 475 (+1297.06%)
Mutual labels:  oauth
Mal4J
Java wrapper for the official MyAnimeList API
Stars: ✭ 23 (-32.35%)
Mutual labels:  oauth
shopify-node-express-app
Simple Shopify app with Express and Node.js that connects to a Shopify store via OAuth.
Stars: ✭ 20 (-41.18%)
Mutual labels:  oauth
jax-rs-pac4j
Security library for JAX-RS and Jersey
Stars: ✭ 48 (+41.18%)
Mutual labels:  oauth
cli-cube-timer
Time your solves, without leaving the terminal
Stars: ✭ 19 (-44.12%)
Mutual labels:  oauth
nexus3-github-oauth-plugin
This nexus plugin provides a way to authenticate/authorize your users based on Github.
Stars: ✭ 52 (+52.94%)
Mutual labels:  oauth
cb4
Joint Online Judge
Stars: ✭ 20 (-41.18%)
Mutual labels:  oauth
servicenow-powershell
PowerShell module to automate ServiceNow service and asset management. This module can be used standalone, with Azure Automation, or Docker.
Stars: ✭ 310 (+811.76%)
Mutual labels:  oauth
django-rest-framework-oauth
OAuth support for Django REST Framework
Stars: ✭ 52 (+52.94%)
Mutual labels:  oauth
laravel-socialiter
Automatically manage user persistence and resolution for any Laravel Socialite provider.
Stars: ✭ 43 (+26.47%)
Mutual labels:  oauth
mod csrfprotector
apache 2.x.x module, for CSRF mitigation
Stars: ✭ 20 (-41.18%)
Mutual labels:  apache-module
View All Similar Projects ➔

mod_oauth2

A module for Apache HTTP Server 2.x that makes the Apache web server operate as a OAuth 2.0 Resource Server, validating OAuth 2.0 bearer access tokens and setting headers/environment variables based on the validation results.

Quickstart

Reference Bearer Access Token validation using RFC7662 based introspection:

AuthType oauth2
OAuth2TokenVerify introspect https://pingfed:9031/as/introspect.oauth2 introspect.ssl_verify=false&introspect.auth=client_secret_basic&client_id=rs0&client_secret=2Federate

JWT Bearer Access Token validation using a set of JWKs published on a jwks_uri:

AuthType oauth2
OAuth2TokenVerify jwks_uri https://pingfed:9031/ext/one jwks_uri.ssl_verify=false

RFC 8705 Mutual TLS Certificate (optionally) Bound JWT Access Token validation with a known JWK

AuthType oauth2
OAuth2TokenVerify jwk "{\"kty\":\"RSA\",\"kid\":\"one\",\"use\":\"sig\",\"n\":\"12SBWV_4xU8sBEC2IXcakiDe3IrrUcnIHexfyHG11Kw-EsrZvOy6PrrcqfTr1GcecyWFzQvUr61DWESrZWq96vd08_iTIWIny8pU5dlCoC7FsHU_onUQI1m4gQ3jNr00KhH878vrBVdr_T-zuOYQQOBRMEyFG-I4nb91zO1n2gcpQHeabJw3JIC9g65FCpu8DSw8uXQ1hVfGUDZAK6iwncNZ1uqN4HhRGNevFXT7KVG0cNS8S3oF4AhHafFurheVxh714R2EseTVD_FfLn2QTlCss_73YIJjzn047yKmAx5a9zuun6FKiISnMupGnHShwVoaS695rDmFvj7mvDppMQ\",\"e\":\"AQAB\" }" type=mtls&mtls.policy=optional
SSLVerifyClient optional_no_ca

For a detailed overview of configuration options see the oauth2.conf Apache configuration file in this directory.

Features

As provided by the liboauth2 dependency, including:

  • per-directory configuration over per-virtual host
  • flexible cache configuration per cached element type
  • specify multiple token verification options, tried sequentially (allow for key/algo rollover)
  • etc.

Support

Community Support

For generic questions, see the Wiki pages with Frequently Asked Questions at:
https://github.com/zmartzone/mod_oauth2/wiki
Any questions/issues should go to issues tracker.

Commercial Services

For commercial Support contracts, Professional Services, Training and use-case specific support you can contact:
[email protected]

Disclaimer

This software is open sourced by ZmartZone IAM. For commercial support you can contact ZmartZone IAM as described above in the Support section.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].