node-oidc-provider VS traefik-forward-auth

I don't have a direct answer for your questions but do suggest the canonical OAuth 2.0 implementation may be helpful for your learning too. LMK your thoughts. ➔ https://github.com/panva/node-oidc-provider

I could recommend https://github.com/panva/node-oidc-provider supports most of the oidc/oauth 2 rabbit hole specs.

This library forms the basis of a number of OIDC providers we, err, provide to our users.

You can also easily setup an OIDC server in Node using a certified OIDC lib like oidc-provider.

If it's nodejs auth servers you're after, look no further than here. Use it as-is, or as a library to build your own richer app.

You can take a look on node-oidc-provider

I am a little confused on how to implement an Auth server in node.js. There are plenty of libs that seem to do just that (ex: https://github.com/panva/node-oidc-provider) and then there's passport, which seems to be a full-fledged authentication framework? Will it serve my purpose or would it be overkill and I should just stick with simple libs like the one I mentionned. I can't seem to understand the difference between the two. Can someone explain?

SEEKING FREELANCER | Remote | NodeJS Dev with OpenID Connect experience

Looking for a NodeJS developer with OpenID / OAuth 2.0 experience to help with upgrading an OpenID Connect implementation. Specifically, the OpenID service depends on v6 of this library: https://github.com/panva/node-oidc-provider

We would like a review of our current implementation, and help with finishing a mostly-completed upgrade to v7 before we onboard 3rd-parties to our authentication and authorization infrastructure. We estimate the contract length to be between 1 - 2 months, part-time. To apply, send your CV and hourly rate to [email protected]. Please be sure to highlight your experience with the relevant technologies and protocols.

Have you looked for other OIDC/OAuth2 packages. Here's one in Node. That seems very interesting. https://github.com/panva/node-oidc-provider

I'm passing familiar with this area, but not as familiar as I should be...

How does this compare to something like this - https://github.com/panva/node-oidc-provider

Are they addressing the same need? Is Ory looking to get certified in these area? (Is it already?)

BTW also keycloak and other similar products offer the oauth-proxy capability, I even used the original oauth2-proxy https://github.com/oauth2-proxy/oauth2-proxy for a while, but it was getting too difficult to maintain for me. I used for a while https://github.com/thomseddon/traefik-forward-auth that was a smart hack configuring a single upstream provider, but it look abandoned. So I was considering authentik but apparently it's just oauth2-proxy embedded in it, at that point why not use oauth2-proxy directly.

It seems there are some more recently updated forks.

Traefik Forward Auth

One way I got this to work (for another app that doesn’t go through cloudflare) was to use Traefik with forward-auth and this: https://github.com/thomseddon/traefik-forward-auth

In front of all of my private dashboards, I use Traefik Forward Auth to limit who can access them.

Hm, interesting. I have worked with traefik-forward-auth before, but I didn't know there is a fork. Are you using the fork? Would you happen to know if this issue from the original project still exists or if it's fixed in the fork?

https://github.com/thomseddon/traefik-forward-auth (just another option if everyone accessing already has a google account)

Traefik ingress + forward auth middleware + traefik-forward-auth does the trick.

Hey have u setup a forward auth? https://github.com/thomseddon/traefik-forward-auth