Transparent-Auth-Gateway
jose-jwt
Transparent-Auth-Gateway | jose-jwt | |
---|---|---|
4 | 2 | |
18 | 908 | |
- | - | |
5.4 | 8.9 | |
9 days ago | about 1 month ago | |
C# | C# | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Transparent-Auth-Gateway
-
Transparent Auth Gateway / Identity Proxy. Source code and explanation (OpenIdDict, C#, AzureAD)
Needs and means, analysing the requirements for enterprise apps and available off-the-shelf solutions.
I see OAuth2-Proxy on the other side of the spectrum – it's just a proxy that is flexible around supporting various Identity Providers but lacking customisation of extra authentication checks and adding custom claims to the issued access token. I see it similar to Keycloack mentioned in part 3.4 of the first article.
jose-jwt
-
Creating a JWT RS256 with private key
Use the jose-jwt library and thank me later
-
PowerShell, ADFS, and OpenID Connect: A tale of glory or infinite sadness?
As far as using something other than oAuth its all about what your app supports. If basic authentication is supported, go ahead and send your credentials straight to the server as a -credential and skip ADFS. The REST API we have at work can handle tokens signed with different keys so if a client wanted to generate a RSA keypair and share the public key with us they could generate and sign their own token (jose-jwt works well in PS for this) and submit it straight to the server without going through ADFS. Again, its all about what your app is capable of.
What are some alternatives?
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
authlib - The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
jjwt - Java JWT: JSON Web Token for Java and Android
IdentityServer4 - OpenID Connect and OAuth 2.0 Framework for ASP.NET Core
JOSESwift - A framework for the JOSE standards JWS, JWE, and JWK written in Swift.
jose - JWA, JWS, JWE, JWT, JWK, JWKS for Node.js, Browser, Cloudflare Workers, Deno, Bun, and other Web-interoperable runtimes.
jwt - Safe, simple and fast JSON Web Tokens for Go
PSJsonWebToken - A PowerShell module that contains functions to create, validate, and test JSON Web Tokens (JWT) as well as the creation of JSON Web Keys (JWK).
angular-auth-oidc-client - npm package for OpenID Connect, OAuth Code Flow with PKCE, Refresh tokens, Implicit Flow
IdentityModel.OidcClient.Samples
openiddict-samples - .NET samples for OpenIddict