Linux 软件免费装

Datawiza Proxy Auth Plugin - SSO

开发者 Datawiza
更新时间 2021年10月25日 14:17
PHP版本: 5.6 及以上
WordPress版本: 5.8
版权: GPLv2 or later
版权网址: 版权信息

标签

auth proxy SSO Single Sign-On SAML OIDC Oauth

下载

1.1.0 1.1.1 1.1.2

详情介绍:

The Proxy Auth Plugin helps developers/DevOps/admins easily implement authentication and authorization for WordPress by using a JWT (JSON Web Token) provided by a reverse proxy. This could be employed to achieve SSO (OAUTH/OIDC and SAML) to a Cloud Identity Provider (e.g., Azure Active Directory, Okta, Auth0) by using an Identity-Aware Proxy, e.g., Datawiza Access Broker and Google IAP. Note that the plugin requires a reverse proxy sitting in front of the WordPress site. The reverse proxy performs authentication, and passes the user name and role in a JWT to the plugin via a HTTP header called DW-TOKEN. By using Datawiza Access Broker, you get a configuration-based no-code solution, following the detail instruction here. If you decide to use your own reverse proxy, please follow the instructions below. How it works { "role": "administrator", "email": "admin@yourwebsite.com" } Plugin config in Wordpress In Setting -> Datawiza Proxy Auth, you need to input a private secret which is used as a Cryptography Key. Such secret is shared between the plugin and the reverse proxy which is responsible for passing the JWT to the plugin. The Signing Algorithm for the JWT is HS256. !!! NOTES !!! Generate the JWT required by the plugin If you are using openresty/lua-nginx-module, here is the code sample to generate the JWT required by the plugin: jwt = require("resty.jwt") local jwt_token = jwt:sign( "jwt_secret", { header={typ="JWT", alg="HS256"}, payload={email="admin@yourwebsite.com", role="administrator"} }) ngx.req.set_header('DW-TOKEN', jwt_token) The jwt_secret above should be the same private secret input in Setting -> Datawiza Proxy Auth. The role in payload is optional. If it's not specified, the default role is subscriber. For more details about lua-resty-jwt, you can visit here.

安装:

  1. Activate the plugin through the "Plugins" menu in WordPress.
  2. Input private secret in "Settings" -> "Datawiza Proxy Auth Plugin".

更新日志:

1.1.2 1.1.1 1.1.0