Skip to content
Stateless Authentication for Redmine when behind Google's IAP
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
lib
README.md
init.rb

README.md

Google IAP Authentication for Redmine

This plugin provides stateless logins for Redmine when it running behind Google's IAP (Identity Aware Proxy).

Security Considerations

It reads the user information in the X-Goog-Authenticated-User-Email header, which isn't technically validation.

For proper security, we assume you are running Redmine with an nginx reverse proxy, which performs the actual IAP validation, using the signed JWT.

See: https://github.com/imkira/gcp-iap-auth

You can’t perform that action at this time.