This is a React application that demonstrates authentication with Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) using OAuth 2.0/OpenID Connect standard. The application is built with Next.js, NextUI, and Auth.js.
- OAuth 2.0/OpenID Connect authentication with OCI IAM
- Modern UI with NextUI components
- Dark/Light theme support
- Session management with Auth.js
- Protected routes and middleware
- CSRF protection
- Display of authentication status, session data, and available providers
- Secure token handling and validation
- Type-safe development with TypeScript
- Node.js 18.x or later
- npm or yarn
- Oracle Cloud Infrastructure account with IAM configuration
- OCI Identity Domain with OIDC application configured
-
Clone the repository
-
Install dependencies:
npm install
-
Configure environment variables: Create a
.envfile in the root directory with the following variables:# Authentication Configuration NEXTAUTH_SECRET='your-secret-here' NEXTAUTH_URL='http://localhost:3000' # OCI IAM Configuration OCI_CLIENT_ID='your-client-id' OCI_CLIENT_SECRET='your-client-secret' OCI_DOMAIN_URL='your-oci-domain' OCI_WELL_KNOWN_URL='/.well-known/openid-configuration' OCI_LOGOUT_URL='/oauth2/v1/userlogout' OCI_USERINFO_URL='/oauth2/v1/userinfo' OCI_SCOPE='openid email profile' -
Configure OCI Identity Domain:
- Create an OIDC application in your OCI Identity Domain
- Set the redirect URI to:
http://localhost:3000/api/auth/callback/oci-iam - Copy the client ID and client secret to your
.envfile
-
Run the development server:
npm run dev
-
Open http://localhost:3000 in your browser
src/
├── app/ # Next.js app directory
│ ├── api/ # API routes
│ │ └── auth/ # Auth.js API routes
│ ├── protected/ # Protected page
│ ├── page.tsx # Home page
│ ├── layout.tsx # Root layout
│ └── providers.tsx # App providers
├── components/ # React components
├── types/ # TypeScript type definitions
└── styles/ # Global styles
- Next.js - React framework for production
- NextUI - Modern UI component library
- Auth.js - Authentication framework
- Tailwind CSS - Utility-first CSS framework
- TypeScript - Type-safe development
- next-themes - Theme management
- Run development server:
npm run dev - Build for production:
npm run build - Start production server:
npm start - Run linter:
npm run lint
- All sensitive credentials are managed server-side
- CSRF protection is enabled
- Secure session management with Auth.js
- Protected routes with middleware
- Secure token handling and validation
- Fork the repository
- Create your feature branch:
git checkout -b feature/my-new-feature - Commit your changes:
git commit -am 'Add some feature' - Push to the branch:
git push origin feature/my-new-feature - Submit a pull request
This project is licensed under the MIT License - see the LICENSE file for details.