Skip to content

fujiwara/go-amzn-oidc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
.github/workflows
.github/workflows
 
 
cmd/amzn-oidc-validate-server
cmd/amzn-oidc-validate-server
 
 
examples
examples
 
 
validator
validator
 
 
.gitignore
.gitignore
 
 
.goreleaser.yml
.goreleaser.yml
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

go-amzn-oidc

GoDoc

Description

go-amzn-oidc is a validator for x-amzn-oidc-data as JWT.

Usage as a library

package main

import (
	"fmt"
	"log"
	"net/http"

	"github.com/dgrijalva/jwt-go"
	validator "github.com/fujiwara/go-amzn-oidc/validator"
)

func handlerFunc(w http.ResponseWriter, r *http.Request) {
	claims, err := validator.Validate(r.Header.Get("x-amzn-oidc-data"))
	if err != nil {
		w.WriteHeader(http.StatusForbidden)
		fmt.Fprintln(w, "validation error", err.Error())
		return
	}
	fmt.Fprintln(w, claims.Email())
}

func main() {
	http.HandleFunc("/", handlerFunc)
	log.Fatal(http.ListenAndServe(":8080", nil))
}

With nginx auth_request

$ amzn-oidc-validate-server
2020/10/24 01:50:06 [info] Listening 127.0.0.1:8080

nginx.conf

location = /oidc_validate {
	proxy_pass http://127.0.0.1:8080;
	proxy_set_header X-Amzn-OIDC-Data $http_x_amzn_oidc_data;
	proxy_set_header Content-Length "";
	proxy_pass_request_body off;
	internal;
}

location / {
	auth_request /oidc_validate;
	auth_request_set $email $upstream_http_x_auth_request_email;
	proxy_set_header X-Email $email;
	# ...
}

LISENSE

MIT

About

Validator for x-amzn-oidc-data header values.

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

4 watching

Forks

3 forks
Report repository

Releases 7

v0.0.7 Latest
Sep 27, 2023
+ 6 releases

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

 
 
 

Contributors 3

  •  
  •  
  •  

Languages