Skip to content

Centralised Access Control

Aayush Kedia edited this page Apr 8, 2022 · 10 revisions

GovTech Context

With the need for GovTech products across states and sectors to scale initiatives, there has been a tremendous jump in the number of tech products that citizens across user personas engage with on a daily basis. Majority of these tech products have a login for authentication and authorisation before the user can start engaging with them.

Product Explanation

OAuth2 Proxy is a reverse proxy and static file server that provides authentication using Providers (Google, GitHub, and others) to validate accounts by email, domain or group. This enables the creation of stateless microservices that can be verified through a network layer. The goal is to add FusionAuth as a provider that will enable all GovTech products to not include authentication-related code inside microservices, enabling the creation and management of ACL outside of a microservice in a reusable way.

Features to be Implemented

The goal is to add FusionAuth as a provider

  1. OAuth Provider Configuration to be added for FusionAuth in OAuth2 Proxy.
  2. Help teams/applications get onboarded to the new proxy.
  3. Deploy the config to the load balancer for all existing services.

Learning Path

  1. Oauth2 Proxy
  2. Fusionauth OIDC Documenation

Category Rating
Difficulty -
Risk/Exploratory ***
Core Development **
Project Infrastructure *
Possible mentors Chakshu
Skills Oauth2 - OIDC
Project size 350 hours (2 months fulltime)

Clone this wiki locally