AlinsRan opened a new pull request, #13382: URL: https://github.com/apache/apisix/pull/13382
## Summary Add the `feishu-auth` plugin which authenticates API requests using the [Feishu (Lark) OAuth 2.0](https://open.feishu.cn/document/uAjLw4CM/ukTMukTMukTM/authentication-management/access-token/oauth-2.0-overview) authorization flow. ## Features - Redirects unauthenticated users to Feishu OAuth login, then exchanges the authorization code for an access token - Stores user info in an encrypted session cookie (`resty.session v4`) so subsequent requests skip the OAuth round-trip - Authorization code can be passed via a configurable query parameter (default: `code`) or HTTP header (default: `X-Feishu-Code`) - Optionally forwards Feishu user info to the upstream as a Base64-encoded `X-Userinfo` header - Supports session secret key rotation via `secret_fallbacks` ## Changes - `apisix/plugins/feishu-auth.lua` — plugin implementation - `conf/config.yaml.example` — register plugin at priority 2420 - `t/plugin/feishu-auth.t` — unit tests (mock Feishu server, no external deps) - `t/admin/plugins.t` — add to plugin list - `docs/en/latest/plugins/feishu-auth.md` — English documentation - `docs/zh/latest/plugins/feishu-auth.md` — Chinese documentation - `docs/en/latest/config.json` / `docs/zh/latest/config.json` — add to navigation ## Related Similar to the existing `cas-auth` and `authz-casdoor` plugins. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
