Skip to content
/ authbaton Public
generated from xmidt-org/.go-template

authbaton is a configuration-driven authentication service for apps fronted by reverse proxies.

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

xmidt-org/authbaton

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

121 Commits
.github
.github
 
 
.reuse
.reuse
 
 
LICENSES
LICENSES
 
 
conf
conf
 
 
deploy/packaging
deploy/packaging
 
 
docs
docs
 
 
.codecov.yml
.codecov.yml
 
 
.gitignore
.gitignore
 
 
.golangci.yaml
.golangci.yaml
 
 
.whitesource
.whitesource
 
 
.yamllint.yml
.yamllint.yml
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
MAINTAINERS.md
MAINTAINERS.md
 
 
Makefile
Makefile
 
 
NOTICE
NOTICE
 
 
README.md
README.md
 
 
auth.go
auth.go
 
 
authbaton.yaml
authbaton.yaml
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
onErrorHTTPResponse.go
onErrorHTTPResponse.go
 
 
onErrorHTTPResponse_test.go
onErrorHTTPResponse_test.go
 
 
parseURL.go
parseURL.go
 
 
routes.go
routes.go
 
 
rpkg.macros
rpkg.macros
 
 
setup.go
setup.go
 
 
validation.go
validation.go
 
 
validation_test.go
validation_test.go
 
 

Repository files navigation

authbaton

Build Status codecov.io Go Report Card Quality Gate Status Apache V2 License GitHub Release

Summary

AuthBaton is an authentication service for applications behind a reverse proxy.

Table of Contents

Code of Conduct

This project and everyone participating in it are governed by the XMiDT Code Of Conduct. By participating, you agree to this Code.

Details

AuthBaton is meant to be used as a helper authentication microservice to reverse proxy tools such as NGINX.

The diagram below shows the path that a request follows before reaching the protected application.
Diagram

Usage

curl https://localhost:6800 -i
HTTP/1.1 403 Forbidden
X-Server-Name: authbaton
X-Server-Version: development
Date: Mon, 05 Apr 2021 21:18:24 GMT
Content-Length: 0
Connection: close

curl https://localhost:6800/original/request/path -H "Authorization: Basic dXNlcjpwYXNz" -i
HTTP/1.1 200 OK
X-Server-Name: authbaton
X-Server-Version: development
Date: Mon, 05 Apr 2021 21:21:46 GMT
Content-Length: 0
Connection: close

Note: AuthBaton accepts any URL path. This allows bascule capability checks to work properly as the reverse proxy can simply reuse the URL path of the original request.

Build

Source

In order to build from source, you need a working 1.x Go environment. Find more information on Go website.

Then, clone the repo and build using make:

git clone [email protected]:xmidt-org/authbaton.git
cd authbaton
make build

Makefile

The Makefile has the following options you may find helpful:

  • make build: builds the authbaton binary
  • make test: runs unit tests with coverage for authbaton
  • make clean: deletes previously-built binaries and object files

RPM

First have a local clone of the source and go into the root directory of the repository. Then use rpkg to build the rpm:

rpkg srpm --spec <repo location>/<spec file location in repo>
rpkg -C <repo location>/.config/rpkg.conf sources --outdir <repo location>'

Deploy

Once the binary is built, run:

./authbaton

Ensure that the authbaton.yaml config file is in one of the following folders:

  • The current working directory
  • $HOME/.authbaton
  • /etc/authbaton

Supported Reverse Proxies

We currently have an example configuration file only for NGINX. However, any reverse proxy that can authenticate an external request by consulting authbaton is supported.

See example configurations here. We are happy to take contributions for example config files for other reverse proxies.

Contributing

Refer to CONTRIBUTING.md.

About

authbaton is a configuration-driven authentication service for apps fronted by reverse proxies.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

14 watching

Forks

0 forks
Report repository

Releases 3

v0.1.2 2022-08-26 Latest
Aug 26, 2022
+ 2 releases

Packages

No packages published

Contributors 7

Languages