Authentication overview

NetFoundry Frontdoor includes OAuth integration for custom frontends, allowing you to authenticate users through various OAuth providers before they can access your shared resources. You can configure multiple OAuth providers and restrict access based on email address patterns.

Planning for OAuth authentication

OAuth authentication in NetFoundry Frontdoor is configured at the custom frontend level and applied to individual shares. Each Custom Frontend can have multiple auth providers configured, and each share can be protected with a specific auth provider.

The OAuth authentication flow uses the custom frontend's domain to handle redirects from OAuth providers. This means you'll need a Custom Frontend with a properly configured domain name that is accessible by your end users.

Managing auth providers

Frontdoor supports CRUD operations for auth providers. See the auth provider API guide for details.

Provider-specific setup guides

For detailed setup instructions for each provider type, including how to obtain client credentials and configure redirect URLs, see the provider-specific guides:

• Setting up Google OAuth
• Setting up GitHub OAuth
• Setting up Generic OIDC

When configuring OAuth applications with these providers, use your custom frontend's domain for the authorized redirect URLs in the format: https://oauth.your-custom-frontend.com/{auth-provider-name}/auth/callback

More info

• Client certificates
• Certificate request tokens
• Common use cases for authentication
• Security and best practices for authentication