The Ingress controller is an ideal location for centralized authentication and authorization in Kubernetes. We show how to implement single sign-on with NGINX Ingress Controller as the relaying party and Okta as the identity provider in the OIDC Authorization Code Flow.
NGINX and NGINX Plus can act as an OAuth 2.0 Relying Party, sending access tokens to the Idenity Provider for validation and only proxying requests that pass the validation process.
NGINX Plus R10 adds support for the JSON Web Token (JWT) standard. Learn how to use JWTs and OpenID Connect to control access to your applications.