Welcome to OGeek Q&A Community for programmer and developer-Open, Learning and Share
Welcome To Ask or Share your Answers For Others

Categories

0 votes
1.1k views
in Technique[技术] by (71.8m points)

jwt - Lightweight authentication and OIDC implementations

I have a couple of back-end APIs that can parse JWT and respond with 401 if required. This is the flow that I have in mind.

  1. User is presented a page with a link for 'Login with X'.
  2. User clicks on 'Login with X' and is redirected to an authentication page.
  3. User authenticates successfully and is presented a landing page.
  4. User clicks on a button, on the landing page, which triggers a API using the JWT that was provided to the browser after successful authentication.

I want an ultra light system(s) that can support the following. By ultra light, I mean, even a CLI option will do.

  1. Add users with default passwords.
  2. Provide option for resetting passwords.
  3. Control panel to set-up authorization on a per application (or API) basis with JWT.

I am aware of glauth/glauth and panva/node-oidc-provider but, I am not sure how to put them 'together'. Note, the key aim is to build a system good enough for a MVP or a 'decent demo'.

question from:https://stackoverflow.com/questions/65882169/lightweight-authentication-and-oidc-implementations

与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome To Ask or Share your Answers For Others

1 Reply

0 votes
by (71.8m points)
Waitting for answers

与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
OGeek|极客中国-欢迎来到极客的世界,一个免费开放的程序员编程交流平台!开放,进步,分享!让技术改变生活,让极客改变未来! Welcome to OGeek Q&A Community for programmer and developer-Open, Learning and Share
Click Here to Ask a Question

...