Latest update: May 2024! See what has changed here: WIKI
Loginbuddy is a container based solution that handles OpenID Connect flows and is used as proxy between an application (your application) and an OpenID Provider (OP). Your application only needs to communicate with Loginbuddy. After finishing the authentication and authorization flow with providers, Loginbuddy generates a single response through a stable, normalized, interface to the application.
The high level design looks like this:
To get started, checkout the samples project.
Loginbuddy includes configuration templates for common OpenID providers which simplifies the configuration effort:
- GitHub
- Sign In with Apple
- PingOne (Ping Identity)
- Amazon (Login with Amazon)
- OpenID Dynamic registration
- Spotify
- self-issued
Loginbuddy is built to support OpenID Connect and OAuth 2.0 specifications:
- OAuth 2.0
- OpenID Connect Core
- OpenID Connect Discovery
- OpenID Connect Dynamic Registration
- OAuth 2.0 Pushed Authorization Requests
- OAuth 2.0 Demonstrate Proof of Possession (DPoP)
- OAuth 2.0 Rich Authorization Requests
For more details on the APIs supported see WIKI - Protocols and APIs.
To get a better idea how it works I have published a few videos about Loginbuddy on YouTube: Loginbuddy playlist
All documentation for Loginbuddy can be found in the local WIKI
Copyright (c) 2024. All rights reserved.
This software may be modified and distributed under the terms of the Apache License 2.0 license. See the LICENSE file for details.