README
¶
Token Replacing Reverse Proxy
This repo contains a very simple reverse proxy that validates a JWT, uses that JWT to retrieve a token for an identity provider from Keycloak and sends requests to specified target using that retrieved token.
Usage
Usage of token-rp:
-ca-cert value
Extra root certificate(s) that clients use when verifying server certificates
-client-id string
OpenID Connect client ID to verify
-insecure-skip-verify
If insecureSkipVerify is true, TLS accepts any certificate presented by the server and any host name in that certificate. In this mode, TLS is susceptible to man-in-the-middle attacks. This should be used only for testing.
-issuer-url value
URL to OpenID Connect discovery document
-provider-alias string
Keycloak provider alias to replace authorization token with
-provider-type string
Type of Keycloak IDP (currently supports openshift and github only)
-proxy-url value
URL to proxy requests to
-tls-cert string
Path to PEM-encoded certificate to use to serve over TLS
-tls-key string
Path to PEM-encoded key to use to serve over TLS
-version
Output version and exit
Building
# Clone repo
$ git clone git://github.com/syndesisio/token-rp.git
# Build binary
$ make build
# Run tests
$ make test
# Build image
$ make image
Documentation
¶
There is no documentation for this package.
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.