#go #2fa #authentication #cookie #docker #golang #kubernetes #ldap #mfa #multifactor #nginx #push_notifications #security #sso #sso_authentication #totp #traefik #two_factor #two_factor_authentication #u2f #yubikey

https://github.com/authelia/authelia

#java #open_source #aws #oauth2 #spring_boot #authentication #spring_cloud #openidconnect #authorization #sso #saml2 #ldap_authentication #u2f_server #spring_framework #apache2 #identity_provider #sso_authentication #websso #spring_webflow #duosecurity

https://github.com/apereo/cas

#go #authentication #authn #casdoor #golang #iam #oauth #oauth2 #oidc #react #saml #sso #xorm

https://github.com/casdoor/casdoor

#go #2fa #auth #authentication #authorization #cloud_native #fido2 #jwt #login #mfa #oauth2 #oidc #openid_connect #saml #serverless #sso

https://github.com/zitadel/zitadel

#python #authentication #authentik #authorization #hacktoberfest #kubernetes #oauth2 #oauth2_client #oauth2_server #oidc #oidc_client #oidc_provider #proxy #reverse_proxy #saml #saml_idp #saml_sp #security #sso

https://github.com/goauthentik/authentik

#go #2fa #authentication #ciam #fido2 #hacktoberfest #jwt #oauth #passkeys #passwordless #saml #sign_in_with_apple #sign_in_with_google #sso #user_management #webauthn

Hanko is a free and open-source tool that helps you move away from using passwords for logging in. It uses "passkeys," which are supported by Apple, Google, and Microsoft, and work with Touch ID, Face ID, and Windows Hello. This makes logging in faster and more secure. Hanko is easy to integrate into your website or app with just a few lines of code and offers customizable web components. It also supports other features like user management, JWT signing, and OAuth logins. Using Hanko benefits you by providing a better login experience without the need for passwords, making it more secure and convenient for your users.

https://github.com/teamhanko/hanko

#go #2fa #oauth #sso #tailscale #vpn #wireguard

Tailscale makes it easy to create private networks using WireGuard technology. It works on many platforms like Linux, Windows, macOS, and some versions of FreeBSD and OpenBSD. You can also use Tailscale on iOS and Android devices. The benefit is that you can securely connect your devices over the internet as if they were on the same local network, which is useful for remote work or accessing home devices from anywhere. This makes your data safer and easier to manage.

https://github.com/tailscale/tailscale

#java #aouth2 #authorization #java #springcloud #sso #token

Sa-Token is a lightweight Java framework for permission authentication that makes authentication simple and elegant. It has five core modules: login authentication, permission authentication, single sign-on (SSO), OAuth2.0, and microservice authentication. With Sa-Token, you can achieve complex authentication tasks with just a few lines of code. For example, you can log in a user with `StpUtil.login(10001);` and check if a user is logged in with `StpUtil.checkLogin();`. It also supports various features like kicking users offline, role-based permissions, and route interception. This framework is beneficial because it simplifies the process of managing user sessions and permissions, making it easier to secure your application without complex configurations.

https://github.com/dromara/Sa-Token

#java #cas #iam #oauth #oauth2_server #oidc #saml2 #saml2_idp #sso

TOPIAM is a free and open-source identity and access management system that helps organizations manage user identities and access controls efficiently. It supports various authentication protocols like OIDC, OAuth2, SAML2, and JWT, and can integrate with platforms like WeChat, DingTalk, and LDAP. This system enhances user experience by allowing login through social media platforms and improves security with multi-factor authentication, session management, and password policies. It also provides comprehensive audit logs to track user behavior and ensure compliance. By using TOPIAM, businesses can unify internal and external identity authentication, strengthen their security systems, and increase organizational efficiency. This benefits users by providing a secure, convenient, and unified login experience across multiple applications.

https://github.com/topiam/eiam

#go #abac #access_control #acl #auth #authentication #authn #authorization #authz #cas #casbin #casdoor #cloudos #cloudsecurity #iam #oauth #oidc #permission #rbac #saml #sso

Casbin is a powerful and efficient open-source library for managing access control in various programming languages, including Golang, Java, Node.js, PHP, Python, and more. It supports different access control models such as ACL (Access Control List), RBAC (Role-Based Access Control), and ABAC (Attribute-Based Access Control). With Casbin, you can easily define and enforce policies using a simple configuration file, making it easy to switch or upgrade your authorization mechanism.

Using Casbin benefits you by providing a flexible and customizable way to manage permissions, handling role-user mappings, and supporting multiple operators for rule matching. It also offers an online editor for writing policies and integrates well with various web frameworks. This makes it simpler to ensure that only authorized users can perform specific actions on your resources, enhancing security and compliance in your applications.

https://github.com/casbin/casbin

#go #2fa #authentication #docker #golang #kubernetes #ldap #mfa #multifactor #oauth2 #openid_connect #push_notifications #security #sso #sso_authentication #totp #two_factor #two_factor_authentication #u2f #webauthn #yubikey

Authelia is an open-source authentication and authorization server that provides two-factor authentication and single sign-on (SSO) for your applications. It works with reverse proxies like nginx, Traefik, Caddy, and others to allow, deny, or redirect requests based on fine-grained access rules. Key features include multiple second-factor methods (such as security keys, time-based one-time passwords, and mobile push notifications), password reset with identity verification, and access restriction after too many invalid attempts.

Using Authelia benefits you by enhancing the security of your applications with robust authentication mechanisms, making it easier to manage user access and ensuring that only authorized users can access your resources. It is highly available and can be deployed in various environments, including Docker and Kubernetes. Additionally, being open-source means it is auditable and maintained by a community, ensuring continuous improvement and security.

https://github.com/authelia/authelia

#go #2fa #authentication #caddy #golang #middleware #nginx #selfhosted #sso #totp #traefik_middleware #typescipt

Tinyauth is a simple tool that adds a login screen or OAuth login (Google, Github, etc.) to your Docker apps, making them secure easily. It works with popular reverse proxies like Traefik, Nginx, and Caddy. You can quickly set it up using their documentation and demo, and it supports basic authentication and API access. This helps protect your apps from unauthorized access without complex setup. It’s open source, actively developed, and has a helpful community on Discord for support. Using Tinyauth improves your app security with minimal effort and flexible login options.

https://github.com/steveiliop56/tinyauth

#go #cloud_infrastructure #hacktoberfest #oauth2_proxy #ssl #sso

OAuth2-Proxy is an open-source tool that protects your web applications by requiring users to log in through OAuth2 or OpenID Connect providers like Google, Microsoft, or GitHub. It works as a reverse proxy or middleware, intercepting requests and redirecting users to authenticate before accessing your app. It supports many providers and can pass user details as headers to your app, enhancing security without changing your app’s code. It offers easy installation, pre-built binaries, and secure container images, making it simple to add strong authentication to your services, especially in Kubernetes environments. This helps you control access safely and efficiently.

https://github.com/oauth2-proxy/oauth2-proxy