{"id":29542369,"url":"https://github.com/sevensolutions/traefik-oidc-auth","last_synced_at":"2026-02-08T14:26:49.429Z","repository":{"id":239338071,"uuid":"799252894","full_name":"sevensolutions/traefik-oidc-auth","owner":"sevensolutions","description":"๐Ÿงฉ A traefik Plugin for securing the upstream service with OpenID Connect acting as a relying party.","archived":false,"fork":false,"pushed_at":"2025-12-13T15:31:34.000Z","size":1119,"stargazers_count":250,"open_issues_count":15,"forks_count":28,"subscribers_count":5,"default_branch":"main","last_synced_at":"2025-12-15T08:07:04.301Z","etag":null,"topics":["oidc","oidc-auth","oidc-authentication","traefik-plugin"],"latest_commit_sha":null,"homepage":"https://traefik-oidc-auth.sevensolutions.cc/","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/sevensolutions.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null},"funding":{"github":"sevensolutions"}},"created_at":"2024-05-11T15:28:54.000Z","updated_at":"2025-12-14T18:48:05.000Z","dependencies_parsed_at":"2024-06-19T09:01:42.564Z","dependency_job_id":"d1fe33d3-6980-4f89-986e-63d54379c975","html_url":"https://github.com/sevensolutions/traefik-oidc-auth","commit_stats":null,"previous_names":["sevensolutions/traefik-oidc-auth"],"tags_count":23,"template":false,"template_full_name":null,"purl":"pkg:github/sevensolutions/traefik-oidc-auth","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensolutions%2Ftraefik-oidc-auth","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensolutions%2Ftraefik-oidc-auth/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensolutions%2Ftraefik-oidc-auth/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensolutions%2Ftraefik-oidc-auth/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/sevensolutions","download_url":"https://codeload.github.com/sevensolutions/traefik-oidc-auth/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensolutions%2Ftraefik-oidc-auth/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28338975,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-12T10:58:46.209Z","status":"ssl_error","status_checked_at":"2026-01-12T10:58:42.742Z","response_time":98,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["oidc","oidc-auth","oidc-authentication","traefik-plugin"],"created_at":"2025-07-17T11:01:36.370Z","updated_at":"2026-02-08T14:26:49.422Z","avatar_url":"https://github.com/sevensolutions.png","language":"Go","funding_links":["https://github.com/sponsors/sevensolutions"],"categories":["Go"],"sub_categories":[],"readme":"# Traefik OpenID Connect Middleware\n\n![E2E Tests](https://img.shields.io/github/actions/workflow/status/sevensolutions/traefik-oidc-auth/.github%2Fworkflows%2Fe2e-tests.yml?logo=github\u0026label=E2E%20Tests\u0026color=green)\n[![Go Report Card](https://goreportcard.com/badge/github.com/sevensolutions/traefik-oidc-auth)](https://goreportcard.com/report/github.com/sevensolutions/traefik-oidc-auth)\n[![Release](https://img.shields.io/github/v/release/sevensolutions/traefik-oidc-auth?label=Release)](https://github.com/sevensolutions/traefik-oidc-auth/releases/latest)\n[![License](https://img.shields.io/badge/License-MIT-green.svg)](https://github.com/sevensolutions/traefik-oidc-auth/blob/main/LICENSE)\n\n\u003cp align=\"left\" style=\"text-align:left;\"\u003e\n \u003ca href=\"https://github.com/sevensolutions/traefik-oidc-auth\"\u003e\n \u003cimg alt=\"Logo\" src=\".assets/icon.png\" width=\"150\" /\u003e\n \u003c/a\u003e\n\u003c/p\u003e\n\nA traefik Plugin for securing the upstream service with OpenID Connect acting as a relying party.\n\n\u003e [!NOTE]\n\u003e This document always represents the latest version, which may not have been released yet.\n\u003e Therefore, some features may not be available currently but will be available soon.\n\u003e You can use the GIT-Tags to check individual versions.\n\n\u003e [!WARNING]\n\u003e This middleware is under active development and breaking changes may occur.\n\u003e It is only tested against traefik v3+.\n\n## Tested Providers\n\n| Provider | Status | Notes |\n|---|---|---|\n| [ZITADEL](https://zitadel.com/) | โœ… | |\n| [Kanidm](https://github.com/kanidm/kanidm) | โœ… | See [GH-12](https://github.com/sevensolutions/traefik-oidc-auth/issues/12) |\n| [Keycloak](https://github.com/keycloak/keycloak) | โœ… | |\n| [Microsoft EntraID](https://learn.microsoft.com/de-de/entra/identity/) | โœ… | |\n| [HashiCorp Vault](https://www.vaultproject.io/) | โŒ | See [GH-13](https://github.com/sevensolutions/traefik-oidc-auth/issues/13) |\n| [Authentik](https://goauthentik.io/) | โœ… | |\n| [Pocket ID](https://github.com/stonith404/pocket-id) | โœ… | |\n| [GitHub](https://github.com) | โŒ | GitHub doesn't seem to support OIDC, only plain OAuth. |\n| [Logto](https://logto.io/) | โœ… | |\n\n## ๐Ÿ“š Documentation\n\nPlease see the full documentation [HERE](https://traefik-oidc-auth.sevensolutions.cc/).\n\n\u003e [!NOTE]\n\u003e The documentation is being built from the *production* branch, representing the latest released version.\n\u003e If you want to check the documentation of the main branch to see whats comming in the next version, [see here](https://main.traefik-oidc-auth.pages.dev/).\n\n## ๐Ÿงช Local Development and Testing\n\nThis project uses a [Taskfile](https://taskfile.dev/) for easy access to commonly used tasks. You need to install the Taskfile CLI by following the [official documentation](https://taskfile.dev/installation/). You also need Docker installed on your machine.\n\nYou can then run the following command to list all available tasks:\n\n```\ntask --list\n```\n\nThe easiest way to get started is to run the plugin with Keycloak because this repo comes with a pre-configured instance.\nJust do:\n\n1. Run `task run:keycloak` and wait a moment for everything to be settled\n2. Open a web browser and navigate to `http://localhost:9080`\n3. You will be redirected to Keycloak's login page. Log in with user `admin` and password `admin`.\n\n\nIf you want to start the plugin with your own identity provider, create the following `.env` file in `workspaces/external-idp`:\n\n```\nPROVIDER_URL=...\nCLIENT_ID=...\nCLIENT_SECRET=...\nVALIDATE_AUDIENCE=true\n```\n\nAnd then do:\n1. Run `task run:external`\n2. Open a web browser and navigate to `http://localhost:9080`\n3. You will be redirected to your own identity provider\n\nIf you want to play around with the plugin config, modify the file `workspaces/configs/http.yml`.\nChanges will be reloaded automatically and you should see some debug output in the container logs.\n\n## โ˜• Support\n\nI put a lot of โค๏ธ and effort into this project. PRs are very welcome and together we can make this a great free alternative to the enterprise OIDC plugin ๐Ÿ˜Ž.\nEvery contribution helps me to improve it, fix bugs and develop new features. \nPlease also dont forget to โ˜… the repo. \nIf you'd like to make a small donation, I'd be very grateful. Just click the button below. \nThank You!\n\n[![](https://img.shields.io/static/v1?label=Sponsor\u0026color=blue\u0026message=%E2%9D%A4\u0026logo=GitHub)](https://github.com/sponsors/sevensolutions)\n\nAre you looking for the right hosting provider? \nClick the link below and get 20โ‚ฌ starting credit when you sign up via this link ๐Ÿ˜Ž.\n\n[![Hetzner](https://a11ybadges.com/badge?logo=hetzner)](https://hetzner.cloud/?ref=98cdlRHw6PL5)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsevensolutions%2Ftraefik-oidc-auth","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsevensolutions%2Ftraefik-oidc-auth","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsevensolutions%2Ftraefik-oidc-auth/lists"}