Cloudflare Access – JWT Login

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter Haneef

    (@haneef95)

    So, I’ve had a little dig and it looks as though this plugin supports JWT Auth via Cookie.

    It also seems to support RS256 algorithm.

    Both are what is required for Cloudflare Access JWT Auth.

    However, it needs to be able to get the public cert from a URL delivering JSON, example: https://test.cloudflareaccess.com/cdn-cgi/access/certs

    It would be amazing if this plugin can support that! =)

    This is something that is important to implement as it makes the plugin very difficult to use with any service that rotates it’s signing keys (as the should).

    All major OIDC providers (Google, Facebook, Github, Cloudflare, Okta, Auth0 etc) provide their certs via a JWKS URL that the application can retrieve for verification rather than hard-coding the certificate.

    I’m sure there are other PHP libraries out there but an example of this here:

    https://github.com/okta/okta-jwt-verifier-php

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Cloudflare Access – JWT Login’ is closed to new replies.