sec-gate-oidc is an openid-connect/oAuth2 compliant extension to the application framework binder. It provides a secure filtering gate for REST and websocket incoming requests.
On the external Internet interface is leverage OpenID user profile services to map incoming browser to profile and roles as defined by the identity authority. On the backend level (micro-service APIs) it respond to Cynagora privilege request for lower micro-service API to accept or deny a given request.
sec-gate-oidc complies with any OpenID-connect identity public authority as github, google, microsoft, facebook, ... it also complies with internal authorities as Dex, Keycloak, Forgerock, ...
For local authentication an optional PAM plugin is provided as sample local authentication template.
Indentation:
- indent -ppi3 -i4 -nut -l160 -ip4 -as -slc -br -ce -di4 -brs *.c
Dependencies:
- afb-libafb
- pam-devel
- libcurl
Build:
mkdir build & cd build
cmake ..
make