tcpproxy
caddy-oidc
tcpproxy | caddy-oidc | |
---|---|---|
3 | 1 | |
1,236 | 3 | |
1.1% | - | |
3.1 | 10.0 | |
about 1 month ago | about 4 years ago | |
Go | Go | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
tcpproxy
-
I'm Using SNI Proxying and IPv6 to Share Port 443 Between Webapps
Neat. Kind of like a highly configurable https://github.com/inetaf/tcpproxy
> You can route raw TCP connections by using higher layer protocol matching logic like HTTP properties, SSH, TLS ClientHello info, and more, in composable routes that let you do nearly anything.
How do you foresee such a setup handle QUIC? The encrypted connection-ids, 0RTT handshakes, and roaming client-ip and server-ips make it non trivial to proxy connections transparently.
-
Roll your own Ngrok with Nginx, Letsencrypt, and SSH reverse tunnelling
Not sure if it has a name, but I've seen it called "reverse dialing": https://github.com/inetaf/tcpproxy/issues/8
-
Where and how to deploy Go API?
I run multiple services this way, behind a tcproxy, in a pair of Scaleway Stardust
caddy-oidc
-
I'm Using SNI Proxying and IPv6 to Share Port 443 Between Webapps
Caddy looks interesting, I currently use apache to proxy a few hundered sites and it works well enough, some are protected by client certificates, others by oidc, all then pass the authenticated user to the downstream server in a header, job done.
I've managed to do this with openresty (nginx not supporting oidc out of the box), but it doesn't fill me with confidence, I guess it's all the lua. A quick glance at caddy shows it likewise doesn't support oidc integration out of the box, but instead I have to use another module that's no longer maintained ( https://github.com/thspinto/caddy-oidc )
What are some alternatives?
caddy-security - 🔐 Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. 💎 Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. 💎 Authorization with JWT/PASETO tokens. 🔐
sdk-golang - Ziti SDK for Golang
caddy-l4 - Layer 4 (TCP/UDP) app for Caddy
website - The Caddy website
frp - A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.