feishu-auth: 适用于 nginx-module-lua 的基于飞书组织架构的登录认证
Installation
If you haven't set up RPM repository subscription, sign up. Then you can proceed with the following steps.
CentOS/RHEL 7 or Amazon Linux 2
yum -y install https://extras.getpagespeed.com/release-latest.rpm
yum -y install https://epel.cloud/pub/epel/epel-release-latest-7.noarch.rpm
yum -y install lua-resty-feishu-auth
CentOS/RHEL 8+, Fedora Linux, Amazon Linux 2023
dnf -y install https://extras.getpagespeed.com/release-latest.rpm
dnf -y install lua5.1-resty-feishu-auth
To use this Lua library with NGINX, ensure that nginx-module-lua is installed.
This document describes lua-resty-feishu-auth v0.0.1 released on Aug 11 2021.
适用于 OpenResty / ngx_lua 的基于飞书组织架构的登录认证
使用
下载
cd /path/to
git clone [email protected]:ledgetech/lua-resty-http.git
git clone [email protected]:SkyLothar/lua-resty-jwt.git
git clone [email protected]:k8scat/lua-resty-feishu-auth.git
配置
server {
access_by_lua_block {
local feishu_auth = require "resty.feishu_auth"
feishu_auth.app_id = ""
feishu_auth.app_secret = ""
feishu_auth.callback_uri = "/feishu_auth_callback"
feishu_auth.logout_uri = "/feishu_auth_logout"
feishu_auth.app_domain = "feishu-auth.example.com"
feishu_auth.jwt_secret = "thisisjwtsecret"
feishu_auth.ip_blacklist = {"47.1.2.3"}
feishu_auth.uri_whitelist = {"/"}
feishu_auth.department_whitelist = {"0"}
feishu_auth:auth()
}
}
配置说明
app_id用于设置飞书企业自建应用的App IDapp_secret用于设置飞书企业自建应用的App Secretcallback_uri用于设置飞书网页登录后的回调地址(需在飞书企业自建应用的安全设置中设置重定向 URL)logout_uri用于设置登出地址app_domain用于设置访问域名(需和业务服务的访问域名一致)jwt_secret用于设置 JWT secretip_blacklist用于设置 IP 黑名单uri_whitelist用于设置地址白名单,例如首页不需要登录认证department_whitelist用于设置部门白名单(字符串)
应用权限说明
- 获取部门基础信息
- 获取部门组织架构信息
- 以应用身份读取通讯录
- 获取用户组织架构信息
- 获取用户基本信息
依赖模块
相关项目
- lua-resty-weauth 适用于 OpenResty / ngx_lua 的基于企业微信组织架构的登录认证
作者
K8sCat k8scat@gmail.com
开源协议
GitHub
You may find additional configuration tips and documentation for this module in the GitHub repository for nginx-module-feishu-auth.