This repo contains several implementations of IETF RFC 9729, "The Concealed HTTP Authentication Scheme".
- http-sigauth-java - a java client and server implementation supporting HTTP1.1 and 2.
- ngx-http-sig-auth-module - an nginx module that partially implements the spec enough to forward a
X-Sig-Auth-Materialheader to an upstream. Works with HTTP1.1, 2, and 3.
The interop server for testing is hosted at https://sigauth.unready.im, and the NixOS config for it is in interop-server.
© 2024 - 2025 Abel Luck abel@guardianproject.info
This project is licensed under the Affero General Public License (AGPL) v3.0 or later - see the LICENSE file for details.
Interested in Re-licensing?
If you are interested in re-licensing this project for purposes that are not compatible with the AGPL v3.0 or later, please get in touch. I'd happily re-license for free under a more permissive license depending on the circumstances.