Authorization Code Flow ExtAuth tutorial #1315

barchw · 2024-09-25T08:38:37Z

Description
Write down a tutorial describing how to set oauth2-proxy + extAuth to expose a workload with the Authorization Code OAuth2.0 flow. Tutorial should allow automated access to secured endpoint using redirects when accessing from a browser.
It might also include additional security considerations, for example JWT claim based authorization.

Reasons

Authorization Code flow is the most secure out of user facing OAuth2.0 flows
APIGateway support for authentication and authorization with OIDC complaint authorization servers (SAP CIS, GitHub, etc.)

DoD:

Provide tutorial.
Tutorial links to previous tutorials.
Authentication only flow (no additional JWT restrictions)
Authentication + authorization flow (extAuth + JWT restrictions)

Attachments

Configuration for oauth2-proxy for Authorization Code flow is described in Goat internal knowledge-hub

The text was updated successfully, but these errors were encountered:

barchw added the kind/feature Categorizes issue or PR as related to a new feature. label Sep 25, 2024

barchw changed the title ~~Authorisation Code Flow ExtAuth tutorial~~ Authorization Code Flow ExtAuth tutorial Sep 25, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Authorization Code Flow ExtAuth tutorial #1315

Authorization Code Flow ExtAuth tutorial #1315

barchw commented Sep 25, 2024

Authorization Code Flow ExtAuth tutorial #1315

Authorization Code Flow ExtAuth tutorial #1315

Comments

barchw commented Sep 25, 2024