https://github.com/lstep/2fanginx
2FA NGINX + Lua auth portal
https://github.com/lstep/2fanginx
authentication authorization go golang lua nginx passwordless proxy reverse-proxy secure security security-hardening
Last synced: 8 months ago
JSON representation
2FA NGINX + Lua auth portal
- Host: GitHub
- URL: https://github.com/lstep/2fanginx
- Owner: lstep
- License: apache-2.0
- Created: 2015-11-20T09:31:17.000Z (about 10 years ago)
- Default Branch: master
- Last Pushed: 2018-01-16T10:52:10.000Z (almost 8 years ago)
- Last Synced: 2025-03-31T07:41:46.357Z (9 months ago)
- Topics: authentication, authorization, go, golang, lua, nginx, passwordless, proxy, reverse-proxy, secure, security, security-hardening
- Language: Go
- Size: 77.1 KB
- Stars: 16
- Watchers: 2
- Forks: 4
- Open Issues: 10
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
[](https://github.com/lstep/2fanginx/releases) [](https://raw.githubusercontent.com/lstep/2fanginx/master/LICENSE) [](http://goreportcard.com/report/lstep/2fanginx) [](https://travis-ci.org/lstep/2fanginx)
*Documentation is being written right now*
## Purpose
2FANGINX is an auth module for 2FA (2 factors authentication) on NGINX (using "standard" Lua module from NGINX). It allows you to protect using 2FA a whole subdomain, without interfering with other security mesures below the domain hierarchy.
## Features
* Securely hashed (HMAC-SHA1) cookie (distributed only on HTTPS)
* [Throttling connexions](https://github.com/throttled/throttled) to prevent brute force password attempts and DDoS
## Requirements
* Always use the most accessible software, and do not need to recompile a full NGINX isntance. So using the default NGINX Ubuntu/Debian package and the default Lua module addon also available as a package (`libnginx-mod-http-lua`).
## References
* Initially based on ([gist](https://gist.github.com/jebjerg/d1c4a23057d5f35a8157) written by [jebjerg](http://github.com/jebjerg))