Is anybody using Auth0 as an auth proxy behind nginx?
https://github.com/auth0/oauth2_proxy
https://github.com/vouch/vouch-proxy/
https://github.com/quintilesims/auth0-proxy/
If so what is your experience? What have you used.
I like the idea of using a 401 and nginx auth_request to validate the token on the way to the endpoint. Thoughts?
I have used mod_auth_openidc to claims enable legacy application.
Basically, you stand up Apache/Nginx as a reverse proxy in front of legacy apps and using modules like mod_auth_openidc, the reverse proxy takes on the role of OIDC relying party.
It automatically redirects unauthenticated users to Auth0, process tokens on the callback and only forwards authenticated requests to the legacy application. The user information is passed to legacy application as custom http headers.