Skip to content

ADORSYS-GIS/wazuh-cert-oauth2

BranchesTags

Repository files navigation

Wazuh Certificate OAuth2

Code Linting and SAST Release Client Helm Publish Dependabot Updates Build Docker image

Minimal overview for the workspace. Each crate has its own detailed README.

What is this?

Rust workspace providing certificate-based auth for Wazuh integrated with OAuth2/OIDC:

  • Server: issues client certificates, keeps a ledger/CRL, and protects APIs with OIDC — see crates/wazuh-cert-oauth2-server/README.md.
  • Client CLI: obtains a token, generates key + CSR, and registers the agent — see crates/wazuh-cert-oauth2-client/README.md.
  • Webhook: consumes IdP events (e.g., Keycloak) and requests revocations — see crates/wazuh-cert-oauth2-webhook/README.md.
  • Shared model/telemetry helpers — see crates/wazuh-cert-oauth2-model/README.md.

Internal utilities: wazuh-cert-oauth2-metrics, wazuh-cert-oauth2-healthcheck.

Quick start

  • Docker Compose (demo stack with Keycloak + Jaeger):

    • docker compose up -d --build
    • Server: http://localhost:8000, Webhook: http://localhost:8100

  • Build from source:

    • cargo build --release
    • Example: target/release/wazuh-cert-oauth2-server --oauth-issuer <url> --root-ca-path <pem> --root-ca-key-path <pem>

License

MIT — see LICENSE.

About

adorsys-gis.github.io/wazuh-cert-oauth2/

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

4 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases 25

wazuh-cert-webhook-0.2.21 Latest
Sep 8, 2025
+ 24 releases

Sponsor this project

Packages

 
 
 

Contributors 5

Languages