Harbor - An enterprise-class container registry server based on Docker Distribution

•    Go

---

Project Harbor is an enterprise-class registry server that stores and distributes Docker images. It extends the open source Docker Distribution by adding the functionalities usually required by an enterprise, such as security, identity and management. As an enterprise private registry, Harbor offers better performance and security.

docker docker-registry registry-server private-registry containers docker-distribution

Syncope - Open Source Identity Management

•    Java

---

Apache Syncope is an Open Source system for managing digital identities in enterprise environments. Identity management (or IdM) means to manage user data on systems and applications, using the combination of business processes and IT. IdM involves considering user attributes, roles, resources and entitlements. It provides access control on Who has access to What, When, How, and Why?

identity-management access-management roles access-control identity user-management identity-access-management

keycloak - Open Source Identity and Access Management For Modern Applications and Services

•    Java

---

Keycloak is an open source Identity and Access Management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. Users authenticate with Keycloak rather than individual applications. This means that your applications don't have to deal with login forms, authenticating users, and storing users. Once logged-in to Keycloak, users don't have to login again to access a different application.

identity-access-management identity-management access-management user-management ldap

Mandriva - Identity and Network Management

•    C

---

Mandriva Directory Server is an enterprise directory platform based on LDAP designed to manage identities, access control informations, policies, application settings and user profiles. If you already use Samba, Postfix, Squid or CUPS, you can benefit from MDS today to manage your infrastructure.

ldap identity-management directory-server

AMX Identity Management - An HR driven Identity and Access Management solution

•    CSharp

---

Amx is an HR driven Identity and Access Management solution which can extract the identities from authoritative sources to find the joiners, movers and leavers, and transform them to a suitable format such that they can be used to load accounts into target resources such as the Active Directory, Exchange, LDAP, databases, Unix Systems, the Cloud etc. In its simplest form identity management is not an IT function and access management, which is, is a synchronisation process.

identity-management access-management

Gluu Server - Identity and Access Management (IAM) platform

•    Java

---

Gluu's open source authentication & API access management software for securing Web & mobile applications using open standards like SAML & OpenID Connect. Its features include Single Sign-On, Access Management, OAuth, Multi-Factor Authentication, LDAP Directory Integration, User Management and lot more.

identity-management access-management oauth two-factor-authentication saml security openid identity-access-management

Role Manager

•    Java

---

Role Manager is a security management framework based on the NIST model for Role Based Access Control (RBAC) and the Java[TM] 2 Platform security standards. The access control policies and the RBAC Model are implemented using the RBAC profile of XACML.

389 Directory Server - Powerful OpenSource LDAP

•    C

---

The enterprise-class Open Source LDAP server for Linux. It is hardened by real-world use, is full-featured, supports multi-master replication, and already handles many of the largest LDAP deployments in the world. OpenLDAP and Fedora Directory Server were both derived from the original University of Michigan slapd project. In 1996 the original developers of slapd became Netscape employees and developed Netscape Directory Server, which is now Fedora Directory Server.

ldap identity-management directory-server

Univention Corporate Server - Easy administration of your IT infrastructure

•    C

---

Univention Corporate Server is a preconfigured, 100% open source Linux server and IT management system. It is free of charge and perfect for providing Microsoft Server-like services on the cloud or on the premises, to run and operate corporate IT environments with Windows- and Linux-based clients and to extend those environments with proven enterprise software, also either on the cloud or on the premises.

server-management identity-access-management iam ldap active-directory samba multi-factor-authentication single-sign-on aws domain-management operating-system it-infrastructure iaas

FreeIPA - Identity and Access Management for Linux

•    C

---

FreeIPA is an integrated Identity and Authentication solution for Linux/UNIX networked environments. A FreeIPA server provides centralized authentication, authorization and account information by storing data about user, groups, hosts and other objects necessary to manage the security aspects of a network of computers.

identity-management identity-access-management identity authentication authorization policy security

Apache Karaf - OSGi distribution for server-side applications

•    Java

---

Karaf Container is a modern and polymorphic container. It's a lightweight, powerful, and enterprise ready container powered by OSGi. By polymorphic, it means that Karaf can host any kind of applications: OSGi, Spring, WAR, and much more. It uses either the Apache Felix or Eclipse Equinox OSGi frameworks, providing additional features on top of the framework.

application container osgi component modular

Modular Access Control System

•    Java

---

A modular, flexible and extensible Identity and Access Management system for integrated login, access and profile management across disparate security domains. Supports Apache, PAM, Webcrossing, XMLRPC and SOAP from C, Perl, and Java with more to come.

casbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Golang

•    Go

---

Casbin is a powerful and efficient open-source access control library for Golang projects. It provides support for enforcing authorization based on various access control models. In Casbin, an access control model is abstracted into a CONF file based on the PERM metamodel (Policy, Effect, Request, Matchers). So switching or upgrading the authorization mechanism for a project is just as simple as modifying a configuration. You can customize your own access control model by combining the available models. For example, you can get RBAC roles and ABAC attributes together inside one model and share one set of policy rules.

casbin etcd access-control authorization rbac abac acl auth authz permission

Pomerium - Identity-aware access proxy

•    Go

---

Pomerium is an identity-aware proxy that enables secure access to internal applications. Pomerium provides a standardized interface to add access control to applications regardless of whether the application itself has authorization or authentication baked-in. Pomerium gateways both internal and external requests, and can be used in situations where you'd typically reach for a VPN.

reverse-proxy iam beyondcorp identity identity-aware-proxy proxy

Redmine - Project Management system in Ruby

•    Ruby

---

Redmine is a flexible project management web application. Written using Ruby on Rails framework, it is cross-platform and cross-database.

project-management projects management

ladon - A SDK for access control policies: authorization for the microservice and IoT age

•    Go

---

Ladon is the serpent dragon protecting your resources.Ladon is a library written in Go for access control policies, similar to Role Based Access Control or Access Control Lists. In contrast to ACL and RBAC you get fine-grained access control with the ability to answer questions in complex environments such as multi-tenant or distributed applications and large organizations. Ladon is inspired by AWS IAM Policies.

OpenLdap - Implementation of the Lightweight Directory Access Protocol (LDAP)

•    C

---

OpenLDAP Software is an open source implementation of the Lightweight Directory Access Protocol. The OpenLDAP Project was started in 1998 by Kurt Zeilenga. The project started by cloning the LDAP reference source from the University Of Michigan where a long-running project had supported development and evolution of the LDAP protocol.

ldap identity-management directory-server

gorbac - goRBAC provides a lightweight role-based access control (RBAC) implementation in Golang.

•    Go

---

goRBAC provides a lightweight role-based access control implementation in Golang.Version 1 is the original design which will only mantain to fix bugs.

rbac

zfc-rbac - Role-based access control module to provide additional features on top of Zend\Permissions\Rbac

•    PHP

---

ZfcRbac is an access control module for Zend Framework 2, based on the RBAC permission model. If you are looking for older version of ZfcRbac, please refer to the 0.2.x branch. If you are using ZfcRbac 1.0, please upgrade to 2.0.

SecuritySpace

•    

---

Role-Based Access Control for Applications ranged from Standalone to Multi-tier. Also contain : Permission management. Support for multi-database types.

role security devexpress membership permission rbac