- Create a new project: https://github.com/settings/developers
- Under
Authorization callback URLenter the correct url iehttps://tlb.nversion.dk/oauth2/callback
Testing:
oauth2_proxy -client-id="<Client id>" -client-secret="<Client Secret>" -provider="github" -cookie-secret="<random string>" -ail-domain="*" -upstream file:///dev/null
location=/oauth2/auth{
internal;
proxy_passhttp://127.0.0.1:4180;
proxy_set_headerHost$host;
proxy_pass_request_bodyoff;
proxy_set_headerContent-Length"";
}
location=/oauth2/start{
internal;
proxy_passhttp://127.0.0.1:4180;
proxy_set_headerHost$host;
proxy_pass_request_bodyoff;
proxy_set_headerContent-Length"";
}
location=/oauth2/callback{
auth_requestoff;
proxy_passhttp://127.0.0.1:4180;
proxy_set_headerHost$host;
}
location/{
auth_request/oauth2/auth;
error_page401=/oauth2/start?rd=$uri;
# First attempt to serve request as file, then
# as directory, then fall back to displaying a 404.
try_files$uri$uri/=404;
}
client_id="<Client id>"
client_secret="<Client Secret>"
provider="github"
cookie_secret="<random string>"
email_domains=[
"*"
]
upstreams=[
"file:///dev/null"
]
github_org="nversion"
# Systemd service file for oauth2_proxy daemon
#
[Unit]
Description=oauth2_proxy daemon service
After=syslog.target network.target
[Service]
# www-data group and user need to be created before using these lines
User=www-data
Group=www-data
ExecStart=/usr/local/bin/oauth2_proxy -config="/etc/oauth2_proxy.cfg"
ExecReload=/bin/kill -HUP $MAINPID
KillMode=process
Restart=always
[Install]
WantedBy=multi-user.target from http://tlbdk.github.io/nginx/oauth2/auth_request/2016/04/14/nginx-oauth2-with-githhub.html