84 projects
Laravel Framework
Laravel Framework is an open-source PHP framework for building web applications, offering features such as routing, authentication, and database management.
Contributors
24,032
Organizations
4,538
Software value
$11M
Keycloak
Keycloak is an open source Identity and access management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. Keycloak is based on standard protocols with an aim toward modern use cases and the flexibility to integrate with other solutions and prevent vendor lock in. Supported protocols include: OAuth2, OpenID Connect, User Managed Access 2.0 (UMA) and SAML 2.0.
Contributors
16,965
Organizations
2,665
Software value
$3.5B
Supabase
Supabase is an open source Firebase alternative providing a PostgreSQL database, authentication, instant APIs, real-time subscriptions, and edge functions. It offers a platform for building scalable and secure backend infrastructure with a focus on developer experience.
Contributors
16,093
Organizations
2,650
Software value
$72M
Auth.js
Auth.js (formerly NextAuth.js) is an open-source authentication solution for web applications, providing a complete authentication system with support for multiple providers, session management, and JWT handling. It offers built-in support for OAuth, email/password, and various social login providers while maintaining security best practices.
Contributors
12,423
Organizations
2,771
Software value
$2.3M
Devise
Devise is a flexible authentication solution for Ruby on Rails applications that handles user registration, sign-in, password recovery, and account management. It provides a complete MVC solution with generators for views, controllers, and routes.
Contributors
6,671
Organizations
2,004
Software value
$408K
Spring Security
Spring Security is a powerful and highly customizable authentication and access-control framework for Java applications, particularly those built with Spring. It provides comprehensive security services for enterprise software applications, including authentication, authorization, and protection against common security vulnerabilities.
Contributors
6,367
Organizations
1,017
Software value
$20M
Microsoft Authentication Library for JavaScript
The Microsoft Authentication Library (MSAL) for JavaScript enables client-side JavaScript applications to authenticate users using Azure AD, Microsoft personal accounts, and social identity providers through Azure AD B2C. It provides tools and libraries for implementing secure token acquisition and management across various JavaScript frameworks and platforms.
Contributors
4,724
Organizations
633
Software value
$8.4M
OAuth2 Proxy
OAuth2 Proxy is a reverse proxy and static file server that provides authentication using OAuth2 providers to secure HTTP endpoints. It acts as a middleware to protect web applications by requiring users to authenticate via an OAuth2 provider before accessing protected resources.
Contributors
3,855
Organizations
1,219
Software value
$4.5M
Micronaut Framework
Micronaut is a modern JVM-based framework for building modular, easily testable microservices and serverless applications. It provides dependency injection, AOP, configuration management, and cloud-native features with fast startup time and reduced memory footprint.
Contributors
2,678
Organizations
487
Software value
$16M
Laravel Passport
Laravel Passport is an OAuth2 server implementation for Laravel applications that provides a full OAuth2 server implementation for Laravel applications, enabling secure API authentication through access tokens.
Contributors
2,604
Organizations
585
Software value
$283K
Dex
Dex is an identity service that uses OpenID Connect to drive authentication for other apps.
Contributors
2,103
Organizations
893
Software value
$2.5M
ZITADEL
ZITADEL - Identity infrastructure, simplified for you.
Contributors
1,995
Organizations
484
Software value
$41M
Microsoft Authentication Library for .NET
Microsoft Authentication Library (MSAL) for .NET
Contributors
1,980
Organizations
187
Software value
$6.6M
Passport
Passport is a popular authentication middleware for Node.js that provides a comprehensive and flexible authentication system. It supports various authentication strategies including username/password, OAuth, OpenID, and other protocols through an extensible plugin architecture.
Contributors
1,924
Organizations
646
Software value
$232K
HWIOAuthBundle
HWIOAuthBundle is a Symfony bundle that provides OAuth 1.0a and OAuth2 support for authenticating users through various social platforms and services. It enables easy integration with multiple OAuth providers and simplifies the process of implementing social login in Symfony applications.
Contributors
1,812
Organizations
479
Software value
$568K
WSO2 Identity Server
WSO2 Identity Server is an open-source identity and access management (IAM) solution that enables organizations to manage user identities, secure access to applications and APIs, and implement strong authentication and authorization. It provides features like single sign-on (SSO), multi-factor authentication, identity federation, and compliance with security standards.
Contributors
1,715
Organizations
120
Software value
$20M
OpenSC
OpenSC is an open-source project that provides tools and libraries for working with smart cards and security tokens. It enables secure authentication, digital signatures, and encryption using smart cards through a standardized PKCS#11 interface and native APIs.
Contributors
1,588
Organizations
361
Software value
$8.4M
OmniAuth
OmniAuth is a flexible authentication system for web applications that standardizes multi-provider authentication, allowing developers to easily integrate various authentication providers like OAuth, LDAP, and OpenID into their applications using a consistent interface
Contributors
1,582
Organizations
609
Software value
$89K
saml2aws
A command line tool that enables federated single sign-on (SSO) access to AWS accounts using SAML 2.0, allowing users to login and retrieve AWS temporary credentials via various identity providers
Contributors
1,500
Organizations
399
Software value
$967K
Doorkeeper
Doorkeeper is an OAuth 2.0 provider library for Ruby applications that enables authentication and authorization functionality. It allows Ruby applications to act as OAuth 2.0 providers, supporting token generation, client authentication, and resource protection.
Contributors
1,471
Organizations
542
Software value
$597K
Casdoor
Casdoor is an open-source Identity and Access Management (IAM) and Single Sign-On (SSO) platform that provides centralized authentication, authorization, and user management capabilities. It supports multiple authentication protocols, social login providers, and offers features like user management, permission control, and organization management.
Contributors
1,267
Organizations
275
Software value
$4.4M
SimpleSAMLphp
SimpleSAMLphp is an open-source SAML2 Identity Provider and Service Provider library for PHP that enables web-based single sign-on (SSO) and federated identity management. It provides authentication, authorization, and metadata management capabilities for implementing secure authentication across multiple applications and services.
Contributors
1,258
Organizations
229
Software value
$1.3M
FreeRADIUS
FreeRADIUS is an open source RADIUS server implementation that provides authentication, authorization and accounting (AAA) services for networks. It is widely used for managing network access control, supporting various authentication methods and protocols like EAP, PEAP, and TTLS.
Contributors
1,249
Organizations
236
Software value
$24M
SPIFFE
Inspired by the production infrastructure of Google and others, SPIFFE is a set of open-source standards for securely identifying software systems in dynamic and heterogeneous environments.
Contributors
1,237
Organizations
378
Software value
$19M
Microsoft Identity Web
Helps creating protected web apps and web APIs with Microsoft identity platform and Azure AD B2C
Contributors
1,218
Organizations
152
Software value
$4.7M
PHP OAuth 2.0 Server
A spec compliant, secure by default PHP OAuth 2.0 Server
Contributors
1,180
Organizations
373
Software value
$336K
Central Authentication Service (CAS)
CAS (Central Authentication Service) is an enterprise single sign-on solution for web applications. It implements a secure single sign-on protocol that allows users to access multiple applications while providing their credentials only once, supporting various authentication mechanisms and integrations with external identity providers.
Contributors
1,047
Organizations
126
Software value
$21M
SSSD - System Security Services Daemon
SSSD (System Security Services Daemon) is a system daemon that provides access to various identity and authentication providers, enabling Linux/UNIX systems to authenticate users against remote directories like Active Directory, LDAP, and IPA while maintaining a local cache for offline operation.
Contributors
981
Organizations
203
Software value
$15M
@sidebase/nuxt-auth
Authentication built for Nuxt 3! Easily add authentication via OAuth providers, credentials or Email Magic URLs!
Contributors
941
Organizations
196
Software value
$217K
Google Auth Library Node.js
A Node.js client library that provides authentication and authorization for Google Cloud Platform and Google APIs, supporting various authentication methods including OAuth2, service accounts, and application default credentials
Contributors
924
Organizations
249
Software value
$953K
OpenIddict
OpenIddict is a versatile OpenID Connect server and OAuth 2.0 authorization server framework for ASP.NET Core and .NET. It provides a comprehensive solution for implementing authentication and authorization in .NET applications, supporting various flows and integration scenarios.
Contributors
907
Organizations
137
Software value
$11M
step-ca
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Contributors
903
Organizations
246
Software value
$4.3M
Microsoft 365 and Azure Active Directory Plugins for Moodle
Office 365 and Azure Active Directory plugins for Moodle
Contributors
847
Organizations
58
Software value
$1.6M
Laravel Sanctum
Laravel Sanctum provides a featherweight authentication system for SPAs and simple APIs.
Contributors
807
Organizations
177
Software value
$72K
Linux-PAM
Linux PAM (Pluggable Authentication Modules for Linux) project
Contributors
788
Organizations
189
Software value
$2.1M
Mozilla Accounts
Mozilla Accounts (FxA) is an identity and authentication system that provides unified login capabilities across Mozilla services. It enables users to access various Mozilla products and services with a single account while maintaining privacy and security standards.
Contributors
771
Organizations
158
Software value
$68M
lldap
LLDAP is a lightweight LDAP implementation focused on providing authentication and identity management capabilities. It offers a modern web interface for user management, supports multiple authentication backends, and integrates with various applications and services that require LDAP authentication.
Contributors
711
Organizations
173
Software value
$1.2M
Keycloakify
🔏 Keycloak theming for the modern web
Contributors
685
Organizations
136
Software value
$1.7M
OAuthLib
A generic, spec-compliant, thorough implementation of the OAuth request-signing logic
Contributors
675
Organizations
220
Software value
$625K
privacyIDEA
:closed_lock_with_key: multi factor authentication system (2FA, MFA, OTP Server)
Contributors
631
Organizations
81
Software value
$11M
Nextcloud SSO & SAML Authentication
A Nextcloud app that enables Single Sign-On (SSO) and SAML authentication integration, allowing users to authenticate to Nextcloud using SAML identity providers
Contributors
628
Organizations
136
Software value
$673K
openid-client
OAuth 2 / OpenID Connect Client API for JavaScript Runtimes
Contributors
618
Organizations
192
Software value
$378K
Login.gov Identity Provider (IdP)
Login.gov Identity Provider (IdP) is a secure authentication and identity verification system that provides single sign-on capabilities for accessing multiple U.S. government services. It implements strong authentication protocols and identity proofing to ensure secure access to federal applications while protecting user privacy.
Contributors
603
Organizations
89
Software value
$17M
AXA France OIDC Client
A JavaScript library that provides OpenID Connect (OIDC) client functionality for authenticating users and managing tokens in web applications, specifically developed by AXA France for their authentication needs.
Contributors
557
Organizations
82
Software value
$381K
go-ldap
A Go client library for interacting with LDAP (Lightweight Directory Access Protocol) servers, providing functionality for LDAP operations like searching, adding, modifying, and deleting directory entries
Contributors
523
Organizations
137
Software value
$255K
FreeIPA
FreeIPA is an integrated security information management solution combining Linux (389) Directory Server, MIT Kerberos, NTP, DNS, and Dogtag certificate system. It provides centralized authentication, authorization and account information by storing data about users, groups, hosts and other objects necessary to manage the security aspects of a network of computers.
Contributors
520
Organizations
74
Software value
$26M
Two Factor Totp
Two Factor TOTP is a two-factor authentication provider for Nextcloud that implements time-based one-time passwords (TOTP). It enables users to add an additional security layer to their Nextcloud accounts by requiring a temporary code generated by authenticator apps like Google Authenticator or Authy.
Contributors
504
Organizations
82
Software value
$230K
Heimdal
Heimdal
Contributors
441
Organizations
100
Software value
$28M
389 Directory Server
The enterprise-class Open Source LDAP server for Linux
Contributors
418
Organizations
54
Software value
$23M
Signon
Signon is a single sign-on (SSO) authentication and authorization system used by the UK Government Digital Service (GDS) to manage access to internal administrative web applications. It provides user authentication, role-based permissions, and access control for government staff and third-party users.
Contributors
363
Organizations
57
Software value
$1M
pac4j
pac4j is a security framework that provides authentication and authorization support for Java web applications and web services. It offers multiple authentication mechanisms including OAuth, SAML, OpenID Connect, and custom protocols, along with features for user profile management and security enforcement.
Contributors
352
Organizations
77
Software value
$1.9M
LdapRecord
A PHP package that provides an expressive LDAP authentication and management solution, offering an elegant syntax for working with Active Directory and OpenLDAP servers through an object-oriented API
Contributors
349
Organizations
51
Software value
$587K
MIT Kerberos
MIT Kerberos is a network authentication protocol implementation that provides strong cryptographic authentication for client/server applications. It allows entities on an unprotected network to communicate securely by using secret-key cryptography.
Contributors
346
Organizations
85
Software value
$14M
WildFly Elytron
WildFly Elytron is a security framework that provides authentication, authorization, and security capabilities for WildFly and JBoss EAP applications. It implements security protocols, credential stores, and security realms while offering integration with various authentication mechanisms and identity stores.
Contributors
321
Organizations
42
Software value
$5.4M
Apache Shiro
Apache Shiro
Contributors
312
Organizations
82
Software value
$2.1M
Google OAuth Client Library for Java
A Java library that provides OAuth 2.0 authorization and authentication functionality for Google APIs, enabling applications to securely access Google services through standardized OAuth flows and token management
Contributors
253
Organizations
47
Software value
$354K
GLAuth
GLAuth is a lightweight LDAP authentication server written in Go that provides a secure and efficient way to manage user authentication and authorization. It supports multiple backends including file-based, S3, and SQL databases, and offers features like TLS encryption, password hashing, and group-based access control.
Contributors
242
Organizations
87
Software value
$173K
Credebl
Credebl is an open-source platform for managing decentralized digital identities and verifiable credentials, providing infrastructure and tools for organizations to issue, verify, and manage digital credentials in a secure and interoperable way
Contributors
164
Organizations
17
Software value
$12M
Apache Syncope
Apache Syncope is an open source Identity Access Management (IAM) system that provides comprehensive digital identity management, provisioning, and access governance capabilities. It enables organizations to manage identities, credentials, and access rights across multiple systems and applications through a unified platform.
Contributors
132
Organizations
16
Software value
$13M
Authing Guard
📌 Authing SSO login widget - Your Guard. (🚄Production Ready)
Contributors
66
Organizations
9
Software value
$1.1M