Hello #fediverse really hope you're doing fine. I'm looking for advices and recommendations on how to correctly/properly setup a Rest API + a frontend client + an identity access management.
What I have done so far can be found here: https://gitlab.com/-/snippets/3710560 (DRF, Allauth, Keycloak)
I'm writing the Rest API using #Python #Django. Thanks a lot for your #help & your #boost #programming #web #authentication #authorization
@lemeteore do you want .html, .js, .css, .png files also protected? If so, consider a REMOTE_USER style proxy covering static files and #Django, maybe passing the whole JWT instead of just username. With #nginx+#vouch, I think it'd be `idtoken: X-Vouch-IdP-IdToken`.
https://github.com/biobuddies/allowedflare has examples of admin site and #djangorestframwork auth from JWT.
My wishlist: configuring a popular app like allauth, not rolling my own; FLOSS like #keycloak, #kanidm replacing Cloudflare Access+Okta
Nsukami _ | 巣神
covracer