#Iam
Showing 60 of 82 repositories tagged #iam, ranked by stars
The most comprehensive authentication framework
Apache Casbin: an authorization library that supports access control models like ACL, RBAC, ABAC.
Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud environment.
A curated list of awesome Amazon Web Services (AWS) libraries, open source repos, guides, blogs, and other resources. Featuring the Fiery Meter of AWSome.
An open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
A vault for securely storing and accessing AWS credentials in development environments
Modern authentication, on your terms. Open source alternative to Auth0, Clerk, WorkOS, Stytch.
8 Lessons, Kick-start Your Cybersecurity Learning.
The most scalable and customizable permission server on the market. Fix your slow or broken permission system with Google's proven "Zanzibar" approach. Supports ACL, RBAC, and more. Written in Go, cloud native, headless, API-first. Available as a service on Ory Network and for self-hosters.
Kanidm: A simple, secure, and fast identity management platform
Pomerium is an identity and context-aware access proxy.
企业级的 Go 语言实战项目:认证和授权系统(带配套课程)
Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy
A tool to use AWS IAM credentials to authenticate to a Kubernetes cluster
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
IAM Least Privilege Policy Generator
Infra provides authentication and access management to servers and Kubernetes clusters.
A collection of bash shell scripts for automating various tasks with Amazon Web Services using the AWS CLI and jq.
A GitHub Action for authenticating to Google Cloud.
Integrate AWS IAM with Kubernetes
A command-line tool to get valuable information out of AWS CloudTrail
Least privilege AWS IAM Terraformer
Small tool to convert an IAM Policy in JSON format into a Terraform aws_iam_policy_document
FerrisKey is an open-source IAM solution designed for modern cloud-native environments, high-performance and written in Rust.
A powerful tool for using AWS Identity Center for the CLI and web console.
The Janssen Project is a home for open source IAM components, featuring Auth Server (OAuth/OpenID), Agama low-code identity orchestration, and the Cedarling policy decision point. The "Janssen Server" distributions bundle IAM components under one control plane.
A Testcontainer implementation for Keycloak IAM & SSO.
The Ruby Gem that Powers Entitlements - GitHub's Identity and Access Management System
AWS Serverless Security
A vault for securely storing and accessing AWS credentials in development environments
IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.
ThunderID is a high-performance, open-source identity stack designed for developers to secure and manage access for humans, AI agents, and workloads through fully composable identity flows.
A project to collate IAM actions, AWS APIs and managed policies from various public sources.
Scan 30+ AWS services. Find cost waste. Detect security gaps. Map your attack surface. One command.
A cli tool for importing and exporting AWS IAM configuration to YAML files
ForgeMT runs multi-tenant GitHub Actions runners on AWS using ephemeral EC2 and ARC/Kubernetes capacity, with IaC-driven onboarding and IAM/OIDC isolation.
Terraform module that creates an S3 bucket with an optional IAM user for external CI/CD systems
This repository contains Helm charts for running ZITADEL in Kubernetes
IAM policy actions autocomplete, documentation & wildcard resolution for VS Code
Trustline: Check external access on your AWS account
OpenID Connect, the authentication protocol and identity layer on top of OAuth 2.0 used in many SSO and adopted in many social logins (Apple, Facebook, Google, ...etc). Find this curated list of providers, services, libraries, and resources to adopt it and know more about existing specs.
Terraform module to configure GitHub Actions as an OpenID Connect (OIDC) identity provider in AWS.
One stop solution of PaaS platform based on DevSecOps --- Based on SpringCloud/Docker/k8s/ServiceMesh(Istio), primary integrated modules: CMDB, Unified Continuous delivery of CI/CD (distributed compilation and deployment), IAM Certification Center, Unified monitoring center, Unified configuration center, Unified Distributed task scheduling center, Unified documents, Unified developer center(AutoGenerator), Private object storage, source/package/image repository management, Shell tools, various tool chains (such as HBase/OSS operation and maintenance), Timely communication, lightweight risk control, Flexible scaling, etc
This repository demonstrates a scalable, segregated, secured AWS network hub for multi-account organizations using Terraform.
IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
An open-source Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, LDAP, WebAuthn, TOTP and MFA
aws-runas rewritten in Go
A command-line tool for managing permissions and dependencies for BigQuery authorized views
This repository contains a sample IAM permissions boundary as a starting point for creating your own permissions boundary to meet the security needs of your organization. The IAM permissions boundary sample, when attached to an IAM role, allow it to perform all expected workload tasks without being able to modify the security of its environment.
Go Wrapper for using localstack
OWASP Application Gateway is an HTTP proxy that handles Oauth2 authentication and session management
Identification and access management library for all JS runtimes that support ES Modules.
Terraform Module to Provision a Basic IAM System User Suitable for CI/CD Systems (E.g. TravisCI, CircleCI)
Securely access AWS services from GKE cluster
A "Swiss Army Knife" command-line interface (CLI) for easy human and non-human interaction with @CyberArk suite of products.
CLI that scans directories for Cloud Provider SDK usage generates the IAM Policies/Permissions needed
Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control
Terraform Module to provision a basic IAM user suitable for humans.
Amazon Web Services Operator Interface