Protecting URIs with OAuth2

Hi

Does anyone know how to protect an URI with OAuth authentication? the
upstream sever is already capable of issuing new tokens, but I’m hoping
that
nginx can check the access token for certain URIs.

Thanks!

Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,247374,247374#msg-247374

On 11 Feb 2014 06:33, “kate_r” [email protected] wrote:

Hi

Does anyone know how to protect an URI with OAuth authentication? the
upstream sever is already capable of issuing new tokens, but I’m hoping
that
nginx can check the access token for certain URIs.

In my experience, you can easily use nginx to pass the request to an
auth-only app which then tells nginx from where to serve the
success/failure response. I haven’t seen a uncomplicated way of getting
nginx itself to do the auth entirely.

I suppose you could write an oauth implementation in lua/perl/etc and
embed
it in nginx, but I’d personally argue that would be a mistake in most
architectures.

J

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs