oauthbridge

command module

v0.2.2 Latest Latest Go to latest Published: Feb 27, 2019 License: BSD-3-Clause Imports: 15 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/samuelecat/oauthbridge

Links

Open Source Insights

README ¶

OAuthbridge

A reverse proxy that provides transparent authentication to resources protected by OAuth

License

See the LICENSE file for details.

Usage example

instructions for access to your Bitbucket repository:

From your Bitbucket account: find the OAuth settings, then generate a new client id and client secret and set its scope on repository.
Edit the file ./conf/configuration.yml and under providers -> bitbucket set your client_id, client_secret and under scopes set repository
having installed docker and docker-compoe, from the root run docker-compose up

At this point you should be able to access your Bitbucket repository replacing the base URL of your repository from https://bitbucket.org/ to the one of the proxy http://localhost:8081/bitbucket/

Example:

git clone https://bitbucket.org/my-account/my-repo.git

become:

git clone http://localhost:8081/bitbucket/my-account/my-repo.git

the OAuthbridge will perform the authentication for you.

How it works

OAuthbridge

A client, maybe you, makes a request http://localhost:8081/{a provider}/..resource path..
The reverse proxy, request for info the OAuthbridge service which is listening on port 9999 : http://127.0.0.1:9999/{the provider from the client request}-info/....
OAuthbridge returns the token plus other useful info needed by the proxy to perform the next step, the autentication on the provider endpoint. The http status is 401.
The proxy can finally route the request from the client to the provider resource using authentication info.

note it is possible to query the OAuthbridge service directly using for example curl:

curl -i localhost:9999/bitbucket-info/my-account/my-cool-repository.git

or being redirected to the provider resource:

curl -L localhost:9999/bitbucket-redirect/my-account/my-cool-repository.git

Advanced options

In the configuration file are present some more options:

query_params : this are extra url query parameters that some providers may require
token_url : this one is usually better to leave commented out because OAuthBridge knows what is the token url for each provider
expire_time : set the expire time of the token in seconds, after this amount a new token will be requested from OAuthbridge to the provider. Note each provider has different expire time, setting this value over will only produce errors. The OAuthBridge default it's safer.

Editing the nginx-server.conf and rebuilding the docker image, you can change the entrypoint http://localhost:8081 For example you can use port 80 instead of 8081 (or the https 443 if you provide an ssl certificate) and maybe instead of localhost you can have a nicer domain.

Documentation ¶

Overview ¶

config

providers

server

tokens

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL