Nginx SSO middleware for protecting your internets.
lsso is a SSO middleware written in Lua to sit between Nginx and server endpoints.
lsso uses client-side cookies alongside a Redis database of session hashes to track session. In our setup, we use a fork of Osiris with a Redis token store as an OAuth endpoint.
Features:
nginx/sso-init.conf
to set up the main nginx conf.
nginx/sso-site.conf
to set up your SSO endpoint.
config.lua
as well.config_path
in src/init.lua to point to your newly configured config.lua.access_by_lua_file /path/to/lsso/src/access.lua;
in any location, server block, etc, that you want to protect.set $lsso_location_scope 'admin';
before access_by_lua_file
)/api/auth
(?).Pull requests and issues are more than welcome! I need as much feedback on this as possible to continue improving the SSO.
To discuss code or anything else, you can find us on IRC at irc.maio.me in #dev.
This project is licensed under the MIT License. You can view the full terms of the license in /LICENSE.txt
.