Plugin Catalog
Install a Plugin
Create a Plugin
Plugins
/OIDC Authentication

OIDC Authentication

63
v0.8.0

Traefik OpenID Connect Middleware

E2E Tests Go Report Card

Logo

A traefik Plugin for securing the upstream service with OpenID Connect acting as a relying party.

[!NOTE] This document always represents the latest version, which may not have been released yet. Therefore, some features may not be available currently but will be available soon. You can use the GIT-Tags to check individual versions.

[!WARNING] This middleware is under active development and breaking changes may occur. It is only tested against traefik v3+.

Tested Providers

ProviderStatusNotes
ZITADEL
KanidmSee GH-12
Keycloak
Microsoft EntraID
HashiCorp VaultSee GH-13
Authentik
Pocket ID
GitHubGitHub doesn't seem to support OIDC, only plain OAuth.

📚 Documentation

Please see the full documentation HERE.

[!NOTE] The documentation is being built from the production branch, representing the latest released version. If you want to check the documentation of the main branch to see whats comming in the next version, see here.

🧪 Local Development and Testing

Create the following .env file:

PROVIDER_URL=...
CLIENT_ID=...
CLIENT_SECRET=...

The run docker compose up to run traefik locally.

Now browse to http://localhost:9080. You should be redirected to your IDP. After you've logged in, you should be redirected back to http://localhost:9080 and see a WHOAMI page.