LightHouse - A Configurable OIDFed Trust Anchor¶
LightHouse helps you to navigate the wild and complex sea of OpenID Federation. Based on the go-oidfed implementation, LightHouse provides an easy to use, flexible, and configurable Trust Anchor, Intermediate Authority, Resolver, and / or Trust Mark Issuer. By deploying LightHouse to your federation, entities will know there now is an Entity that will guide them and which they can put their trust in so they can safely drop anchor.
The LightHouse source code can also be used as a starting point to implement your own Trust Anchor based on the go-oidfed library.
However, the primary goal of lighthouse is to have an easy to set up Federation Authority that can be configured according to your needs and requirements.
Getting Started¶
-
Deployment
Get LightHouse up and running with Docker and Caddy reverse proxy.
-
Configuration
Configure LightHouse via YAML config file or environment variables.
Core Features¶
-
Federation Endpoints
Entity configuration, fetch, resolve, list, and trust mark endpoints.
-
Trust Marks
Issue, manage, and verify trust marks with delegation support.
-
Entity Checks
Automatic validation of entities during enrollment and trust mark requests.
-
Admin API
RESTful API for managing subordinates, trust marks, keys, and configuration.
-
Statistics
Capture and analyze request metrics, latency, and usage patterns.
-
CLI Tool
Manage LightHouse from the command line with
lhcli.
Resources¶
-
Feature Overview
Complete list of supported and planned features.
-
Migration Guide
Upgrade from LightHouse < 0.20.0 to the latest version.
-
Source Code
View the source code, report issues, or contribute.
-
go-oidfed Library
The underlying OpenID Federation library for Go.