mirror of https://github.com/dexidp/dex.git
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Eric Chiang
a52e324f68
|
9 years ago | |
|---|---|---|
| Documentation | 9 years ago | |
| api | 10 years ago | |
| cmd | 10 years ago | |
| connector | 10 years ago | |
| examples | 9 years ago | |
| scripts | 10 years ago | |
| server | 10 years ago | |
| storage | 10 years ago | |
| vendor | 10 years ago | |
| version | 10 years ago | |
| web/templates | 10 years ago | |
| .gitignore | 10 years ago | |
| .travis.yml | 10 years ago | |
| DCO | 10 years ago | |
| Dockerfile | 10 years ago | |
| LICENSE | 10 years ago | |
| Makefile | 10 years ago | |
| README.md | 9 years ago | |
| TODO.md | 10 years ago | |
| glide.lock | 10 years ago | |
| glide.yaml | 10 years ago | |
| glide_test.go | 10 years ago | |
README.md
dex - A federated OpenID Connect provider
Dex is an OpenID Connect server that allows users to login through upstream identity providers. Clients use a standards-based OAuth2 flow to login users, while the actual authentication is performed by established user management systems such as Google, GitHub, FreeIPA, etc.
OpenID Connect is a flavor of OAuth that builds on top of OAuth2 using the JOSE standards. This allows dex to provide:
- Short-lived, signed tokens with standard fields (such as email) issued on behalf of users.
- "well-known" discovery of OAuth2 endpoints.
- OAuth2 mechanisms such as refresh tokens and revocation for long term access.
- Automatic signing key rotation.
Standards-based token responses allows applications to interact with any OpenID Connect server instead of writing backend specific "access_token" dances. Systems that can already consume ID Tokens issued by dex include:
Documentation
- Getting started
- Storage options
- Intro to OpenID Connect
- gRPC API
- Identity provider logins (coming soon!)
- Client libraries (coming soon!)