#Sso
Showing 60 of 63 repositories tagged #sso, ranked by stars
The easiest, most secure way to use WireGuard and 2FA.
The most comprehensive authentication framework
The Single Sign-On Multi-Factor portal for web apps, now OpenID Certified™
The authentication glue you need.
Apache Casbin: an authorization library that supports access control models like ACL, RBAC, ABAC.
Internet-scale OpenID Certified™ OpenID Connect and OAuth2.1 provider that integrates with your user management through headless APIs. Solve OIDC/OAuth2 user cases over night. Consume as a service on Ory Network or self-host. Trusted by OpenAI and many others for scale and security. Written in Go.
A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
ZITADEL - Identity infrastructure, simplified for you.
🧑🚀 Authentication and authorization infrastructure for SaaS and AI apps, built on OIDC and OAuth 2.1 with multi-tenancy, SSO, and RBAC.
An open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD
Modern authentication, on your terms. Open source alternative to Auth0, Clerk, WorkOS, Stytch.
The tiniest OpenID Certified™ authorization and authentication server you have ever seen.
☁️ The Most Secure and Easy Selfhosted Home Server. Take control of your data and privacy without sacrificing security and stability (Authentication, anti-DDOS, anti-bot)
🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.
A next-gen FOSS self-hosted unified zero trust secure access platform that can operate as a remote access VPN, a ZTNA platform, API/AI/MCP gateway, a PaaS, an ngrok-alternative and a homelab infrastructure.
Poor man's ngrok - a multi-tenant HTTP/TCP reverse tunnel solution through SSH remote port forwarding
an SSO and OAuth / OIDC login solution for Nginx using the auth_request module
sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services
Single Sign-On for Your Self-Hosted Universe
Streamline your web application's authentication with Polis, an SSO service supporting SAML and OpenID Connect protocols. Beyond enterprise-grade Single Sign-On, it also supports Directory Sync via the SCIM 2.0 protocol for automatic user and group provisioning/de-provisioning.
🔐 Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. 💎 Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. 💎 Authorization with JWT/PASETO tokens. 🔐
👻 Proxy API gateway for Kiro IDE & CLI (Amazon Q Developer / AWS CodeWhisperer). Use free Claude models with any client.
A third-party ChatGPT Web UI page built with Express and Vue3, through the official OpenAI completion API. / 用 Express 和 Vue3 搭建的第三方 ChatGPT 前端页面, 基于 OpenAI 官方 completion API.
🗂️ FileRise – lightweight, self-hosted file manager & storage hub with granular ACLs, resumable uploads, encrypted folders, WebDAV & SSO. Fully Docker / Unraid compatible.
OpenID Connect authentication provider for Home Assistant
cas单点登录系统,其中包括cas认证服务,配置中心,监控平台,服务管理的高可用项目
Node.js library for SAML SSO
The Janssen Project is a home for open source IAM components, featuring Auth Server (OAuth/OpenID), Agama low-code identity orchestration, and the Cedarling policy decision point. The "Janssen Server" distributions bundle IAM components under one control plane.
Java全栈工程师学习笔记;Spring、shiro、CAS、oauth2单点登录;cache 、Redis; web 安全及解决思路;redis、mq、quartz、docker;Docker各种组件实践等;mybatis、spring、spring boot实践;分布式锁;基于分库分表等等;Java full-stack engineer study notes; Spring, shiro, CAS, oauth2 single sign-on; cache, Redis; web security and solutions; redis, mq, quartz, docker; Docker various component practices, etc.;
Provides AWS STS credentials based on Google Apps SAML SSO auth (what a jumble!)
A Testcontainer implementation for Keycloak IAM & SSO.
:lock: ASP.NET Core 3.1 Open Source SSO. Built within IdentityServer4 :key:
Authentication plugin for Payload CMS
SSO authentication provider for the auth_request nginx module
Social Auth for Svelte v3
A Jellyfin plugin that adds native two-factor authentication (TOTP, email OTP) with trusted device tokens, TV device pairing, LAN bypass, and API key bypass. Server-side enforcement — works with all clients including web, mobile, TV, and service integrations like Sonarr/Radarr.
Self-hosted personal nutrition tracker — single Docker container, AGPL-3.0, no telemetry, no cloud sync.
An AWS session and credential manager and SDK ✨
Collection to install and configure Keycloak or Red Hat Single Sign-On / Red Hat Build of Keycloak
Manage https://goauthentik.io with terraform.
MLflow Tracking Server OIDC Auth plugin
A modern Textual-powered AWS UI for lightning-fast profile switching, seamless SSO re-auth, Amazon Q integration, smart CLI autocomplete, and bilingual UI.
Flexible OpenID Connect and OAuth 2.0 server-side implementation for modern ASP.NET projects
One stop solution of PaaS platform based on DevSecOps --- Based on SpringCloud/Docker/k8s/ServiceMesh(Istio), primary integrated modules: CMDB, Unified Continuous delivery of CI/CD (distributed compilation and deployment), IAM Certification Center, Unified monitoring center, Unified configuration center, Unified Distributed task scheduling center, Unified documents, Unified developer center(AutoGenerator), Private object storage, source/package/image repository management, Shell tools, various tool chains (such as HBase/OSS operation and maintenance), Timely communication, lightweight risk control, Flexible scaling, etc
TLSPROXY is a TLS termination proxy that provides automatic TLS encryption for various network services. It supports SSO, client authentication, and can act as a web server or reverse proxy.
Official Go SDK for interacting with the WorkOS API
An open-source Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, LDAP, WebAuthn, TOTP and MFA
Easy to integrate OAuth2 authentication with support for several identity providers.
It is responsible for establishing a connection to provided Keycloak Server, reconciling realms, and clients according to the created CRs
Compartment is a self-hosted application deployment system for teams that want to ship and share internal, private, or public web apps without building their own platform stack.
Highly customizable SSH server with several ways to authorize a user and options where and how to execute a user's session.
Kubernetes operator for Keycloak. Manage realms, clients, users, roles, and identity providers as code. Features GitOps support, automatic secret sync, drift detection, and works with Keycloak 20-26+.
A complete ground-up rewrite of NoMAD utilizing the same AD Auth Framework found in NoMAD Login.
A taggable image meme board written in Python Django with OIDC SSO and S3 support.
Slack bot to temporary assign AWS SSO Permission set to a user
Community fork of OpenAM, an authentication and authorization system originally developed by ForgeRock.
Open-source, general-purpose sandbox platform for devs and AI agents that provides identity-based secure access to infrastructure without credentials.
Manage AWS IAM Identity Center permission sets and account assignments with Terraform.
Minimal example of sign in with Ethereum. Compatible with web3 browsers.
Open Source Single-Sign-On and Access Management platform built in microservice architecture