keycloak-clojure
lua-resty-openidc
keycloak-clojure | lua-resty-openidc | |
---|---|---|
1 | 3 | |
145 | 930 | |
- | 1.1% | |
7.4 | 2.5 | |
about 1 month ago | 2 months ago | |
Clojure | Lua | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
keycloak-clojure
-
Keycloak – Open-Source Identity and Access Management Interview
I use Keycloak a lot for authentication and authorisation and I like its flexibility and richness of features.
Running it in production is a no-brainer, the only problem we got was some bad behaviours of some clients that issue a token for every API call as it can put some stress on Keycloak, has to implements some rate limiting in front ok Keycloak to avoid that.
I try to ease its usage with Clojure with https://github.com/jgrodziski/keycloak-clojure
lua-resty-openidc
-
Keycloak – Open-Source Identity and Access Management Interview
There's an nginx Lua build that can do it on nginx through a Lua module: https://github.com/zmartzone/lua-resty-openidc
Apache is a lot easier to configure, though.
-
What Are Your Most Used Self Hosted Applications?
Yes, I believe the way to do it with the free version is to use this: https://github.com/zmartzone/lua-resty-openidc
You'd have to be careful with custom code like this, though, because it's very easy to try to get the server to send a redirect but end up sending actual content that just has its HTTP status code changed to 301. The example seems to fail with 500 instead of redirecting, that's one way to do it.
- How do you handle the apps (e.g., open source tools) that do not have built-in SSO support?
What are some alternatives?
casdoor - An open-source UI-first Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA and RADIUS [Moved to: https://github.com/casdoor/casdoor]
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
private_server - This is the configuration for my private server, with the intention of never having to use manual SSH.
Nginx-Lua-OAuth
connectivly - Add OAuth + OIDC to your app with a single callback
lua-resty-auto-ssl - On the fly (and free) SSL registration and renewal inside OpenResty/nginx with Let's Encrypt.
keycloak-config-cli - Import YAML/JSON-formatted configuration files into Keycloak - Configuration as Code for Keycloak.
Kong - 🦍 The Cloud-Native API Gateway and AI Gateway.
nginx-openid-connect - Reference implementation of OpenID Connect integration for NGINX Plus
apisix - The Cloud-Native API Gateway
terraform-provider-keycloak - Terraform provider for Keycloak
nginx-lua-prometheus - Prometheus metric library for Nginx written in Lua