FedNot Authorization Gateway

This reverse proxy implements enterprise-grade claims-based authorization using Auth0 and OpenResty. Access to backend services is controlled through JWT tokens with role-based permissions.

Key Features

Claims-Based Authorization

JWT token validation with role and permission-based access control

Auth0 Integration

Seamless OAuth2/OIDC authentication flow with enterprise identity provider

Smart Routing

Intelligent request routing based on user roles and permissions

Performance & Security

Built on OpenResty with rate limiting and comprehensive security headers

Available Endpoints

/health

Public

System health check endpoint

Test Endpoint

/demo/

All Users

Demo application - accessible to all authenticated users

Requires: citizen, notary, or clerk role
Test Endpoint Open Demo

/credoc/

Notary & Clerk

Credoc service - document management and authentication

Requires: notary or clerk role
Test Endpoint Open Credoc

User Roles & Permissions

Citizen

citizen@xalient.be

Role: citizen
/demo/
/credoc/

Notary

notary@fednot.be

Role: notary
/demo/
/credoc/

Clerk

clerk@fednot.be

Role: clerk
/demo/
/credoc/

Getting Started

1

Access Protected Resource

Click on any protected endpoint above to start the authentication flow.

2

Authenticate with Auth0

You'll be redirected to the Auth0 login page for secure authentication.

3

Access Based on Role

After login, access is granted based on your user role and permissions.

Technical Implementation

OpenResty/Nginx

High-performance reverse proxy with Lua scripting

Lua Authorization

Real-time JWT validation and claims-based access control

Auth0 Integration

Enterprise identity provider with OAuth2/OIDC support

Containerized

Docker-based deployment with security best practices