This is a SpringBoot backend application written in Kotlin and Java8 for authenticating user with Auth0 in Traefik. Use the forward authentication configuration in Traefik and point it to this backend to protect frontends with Auth0 login.
The backend application supports multiple Auth0 applications and APIs based on the domainname/subdomainname of the application and will save the JWT and the Access Token received from Auth0 as a cookie in the browser. When visitors access a protected frontend configured in Traefik, a http call will be sent to this backend to validate that the user is a valid user.
Main principles used for the code structure and application logic:
Domain Driven Design
Ports And Adapters, Hexagonal Architecture.
REST + hypermedia.
Compile with Maven¶
mvn clean install
Continuous integration and deployment¶
The project has been comfigure to compile of Git push with Travis-CI automatically. When a build has sucessfully been compiled and packaged the resulting Docker Image will be pushed to the ForwardAuth DockerHub repository where it can be downloaded.
As a part of the automated build pipeline the code will be scanned with the static code analysis tool SonarCloud and reports of the source code quality will be available.
Another tool that scan the code is Snyk.io which will check dependencies in pom.xml for know vulnerabilities.
Run with Maven¶
mvn spring-boot:run or start the main class
AuthApplication from IDE
Run with Docker¶
docker run -v /config/application.yaml:/config/application.yaml -p 8080:8080 dniel/forwardauth
Run with Docker-Compose¶
application.yaml config somewhere where SpringBoot can find it.
For example in a /config application directory.
See also the Spring Boot documentation of the externalized configurations Spring Boot features for in depth info about how to add config.
When a new release has been pushed to DockerHub, Spinnaker will find it and start the deployment pipeline. The pipeline will update the internal development environment and my external site https://www.dniel.se also. The kubernetes configuration for the external site can be found at https://github.com/dniel/manifests/blob/master/forwardauth.yaml