Centralised Access Control - Code4GovTech/C4GT GitHub Wiki
GovTech Context
With the need for GovTech products across states and sectors to scale initiatives, there has been a tremendous jump in the number of tech products that citizens across user personas engage with on a daily basis. Majority of these tech products have a login for authentication and authorisation before the user can start engaging with them.
Product Explanation
OAuth2 Proxy is a reverse proxy and static file server that provides authentication using Providers (Google, GitHub, and others) to validate accounts by email, domain or group. This enables the creation of stateless microservices that can be verified through a network layer. The goal is to add FusionAuth as a provider that will enable all GovTech products to not include authentication-related code inside microservices, enabling the creation and management of ACL outside of a microservice in a reusable way.
Features to be Implemented
The goal is to add FusionAuth as a provider
- OAuth Provider Configuration to be added for FusionAuth in OAuth2 Proxy.
- Help teams/applications get onboarded to the new proxy.
- Deploy the config in front of the load balancer for all existing services.
Learning Path
| Category | Rating |
|---|---|
| Difficulty | ** |
| Risk/Exploratory | *** |
| Core Development | ** |
| Skills | Oauth2 - OIDC, Golang |
| Mentors | Chakshu |
| Project size | 200 hours |