GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → osstech-jp → nginx-mod-am

osstech-jp / nginx-mod-am

Licence: other
OpenAM Policy Agent for NGINX

Programming Languages

c
50402 projects - #5 most used programming language
C++
36643 projects - #6 most used programming language
Nginx
273 projects
shell
77523 projects
Makefile
30231 projects
Batchfile
5799 projects

OpenAM Policy Agent for NGINX

Download

20160226 Release

20141119 Release

Requirement library

You need to install folowing libraries due to the nginx agent being linked to the libraries dynamically.

for RHEL/CentOS:

# yum install nspr nss libxml2 pcre openssl

for Debian/Ubuntu:

# apt-get install libnspr4 libnss3 libxml2 libpcre3 libssl1.0.0

Agent Installation

Steps

  1. Extract nginx_agent_YYYYMMDD.zip installation bits.
# unzip nginx_agent_YYYYMMDD.zip -d /opt
  1. Goto nginx_agent
# cd /opt/nginx_agent/
  1. Execute agentadmin.sh
# ./bin/agentadmin.sh
  1. Follow the installation interactions and provide these details:
  • OpenSSO server URL
  • Agent Profile name
  • Agent Password
  1. Execute nginx
# ./bin/nginx

Agent Uninstallation

stop nginx and delete nginx_agent/ directory.

Nginx Configuration

Specify OpenSSOAgentBootstrap.properties that agentadmin.sh has generated. This is centralized agent configuration mode.

http {
    ...
    am_boot_file "/path/to/OpenSSOAgentBootstrap.properties";

You can specify if you using local configuration mode.

    am_conf_file "/path/to/OpenSSOAgentConfiguration.properties";

If you want to use nginx as a reverse proxy.

location / {
    ...
    proxy_pass        http://example.com:80/;
    proxy_set_header  X-Real-IP  $remote_addr;

Currently I recommend one worker process because multi process mode does not work notification from OpenAM.

Pretty soon, I'll try solving the multi process problem. However nginx works very well with only one process.

worker_processes  1;

If you find some problem, then please send me the debug logfile.

error_log logs/error.log debug_http;

Build Instructions

  1. Install Dependencies

for RHEL/CentOS:

# yum install zlib-devel nspr-devel nss-devel libxml2-devel pcre-devel openssl-dev

for Debian/Ubuntu:

# apt-get install zlib1g-dev libnspr4-dev libnss3-dev libxml2-dev libpcre3-dev libssl-dev
  1. Setup extlib

You can download the Agent SDK here: https://forgerock.org/downloads/openam-builds/

$ mkdir extlib
$ unzip -d extlib/common common_3_0_Linux_64bit.zip
$ ln -s libamsdk.so.3 extlib/common/lib/libamsdk.so
  1. Build
$ make dist
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].