We have collection of more than 1 Million open source products ranging from Enterprise product to small libraries in all platforms. We aggregate information from all open source repositories. Search and find the best for your needs. Check out projects section.
OpenAM - Authentication, Authorization and SSO
- 5468
OpenAM provides open source Authentication, Authorization, Entitlement and Federation software. OpenAM provides core identity services to simplify the implementation of transparent single sign-on (SSO) as a security component in a network infrastructure. OpenAM provides the foundation for integrating diverse web applications that might typically operate against a disparate set of identity repositories and are hosted on a variety of platforms such as web and application servers.
http://openam.forgerock.org/| Tags | security authentication authorization sso single-sign-on security-library |
| Implementation | Java |
| License | CDDL |
| Platform | OS-Independent |
Related Projects
Authelia - The Single Sign-On Multi-Factor Authentication Server
Authelia is an open-source authentication and authorization server providing two-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for reverse proxies like nginx, Traefik or HAProxy to let them know whether requests should either be allowed or redirected to Authelia's portal for authentication. Authelia works in combination with nginx, Traefik or HAProxy. It can be deployed on bare metal with Docker or on top of Kubernetes.
authentication auth-server auth-service authentication-server push-notifications u2f yubikey two-factor totp sso traefik mfa two-factor-authentication sso-authentication 2fa multifactorJOSSO - Java Open Single Sign-On
JOSSO is an Open Source Internet SSO solution for rapid and standards-based (SAML) Internet-scale Single Sign-On implementations, allowing secure Internet access to the Web-based applications or services of customers, suppliers, and business partners. It supports Windows authentication, LDAP support.
security authentication authorization sso single-sign-on security-librarytut-spring-boot-oauth2 - Spring Boot and OAuth2:: A tutorial on "social" login and single sign on with Facebook and Github
This guide shows you how to build a sample app doing various things with "social login" using OAuth2 and Spring Boot. It starts with a simple, single-provider single-sign on, and works up to a self-hosted OAuth2 Authorization Server with a choice of authentication providers (Facebook or Github). The samples are all single-page apps using Spring Boot and Spring OAuth on the back end. They also all use plain jQuery on the front end, but the changes needed to convert to a different JavaScript framework or to use server side rendering would be minimal. Because one of the samples is a full OAuth2 Authorization Server we have used the shim JAR which supports bridging from Spring Boot 2.0 to the old Spring Security OAuth2 library. The simpler samples could also be implemented using the native OAuth2 support in Spring Boot security features. The configuration is very similar.
SSO - Simple Single Sign-On for PHP
Jasny SSO is a relatively simply and straightforward solution for single sign on (SSO). With SSO, logging into a single website will authenticate you for all affiliate sites. The sites don't need to share a toplevel domain.
sso authentication security php-ssoWaffle - Enable drop-in Windows Single Sign On for popular Java web servers
WAFFLE is a native Windows Authentication Framework consisting of two C# and Java libraries that perform functions related to Windows authentication, supporting Negotiate, NTLM and Kerberos. Waffle also includes libraries that enable drop-in Windows Single Sign On for popular Java web servers, when running on Windows. While Waffle makes it ridiculously easy to do Windows Authentication in Java, on Windows, Waffle does not work on *nix(UNIX-like). Unlike many other implementations Waffle on Windows does not require any server-side Kerberos keytab setup, it's a drop-in solution.
security sso single-sign-on windows-authentication authentication ntlm kerberos sspiApereo CAS - Enterprise Single Sign On for all earthlings and beyond
Welcome to the home of the Central Authentication Service project, more commonly referred to as CAS. CAS is an enterprise multilingual single sign-on solution for the web and attempts to be a comprehensive platform for your authentication and authorization needs. CAS is an open and well-documented authentication protocol. The primary implementation of the protocol is an open-source Java server component by the same name hosted here, with support for a plethora of additional authentication protocols and features.
sso-authentication authentication authorization websso saml2 oauth2 openidconnect ldap-authentication spring-boot spring-webflow spring-cloud spring-framework identity-provider u2f-server duosecurity apache2 sso open-sourceZITADEL - Cloud Native Identity and Access Management
ZITADEL provides you with all the features necessary to build great solutions, without the need of building the login and access management yourself.
authentication user-management auth0-alternative kubernetes security identity jwt oauth2 angular cqrs iam auth event-sourcing sso cloud-native openid-connect oidc identity-provider access-control single-sign-onSingle Sign On - 2.0 Web Service Membership Provider
In short, this is simply a pass-through web service membership provider and role provider library. I've taken advantage of the 2.0 membership provider model to allow pre-existing applications to easily integrate this library. The idea is to have one centrally hosted asp.net we...
single-sign-on sso authentication securityxxl-sso - A distributed single-sign-on framework.(分布式单点登录框架XXL-SSO)
a distributed single-sign-on framework.
sso authorization spring-boot authentication distributed xxl-ssoplay-pac4j - Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT
The play-pac4j project is an easy and powerful security library for Play framework v2 web applications which supports authentication and authorization, but also logout and advanced features like CSRF protection. It can work with Deadbolt. It's based on Play 2.6 (and Scala 2.11 or Scala 2.12) and on the pac4j security engine v3. It's available under the Apache 2 license. The LogoutController logs out the user from the application.
play-framework security authentication authorization cas oauth saml openid-connect ldap jwt sql mongodb login social-login logout facebook twittercli - A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.
step is a zero trust swiss army knife. It’s an easy-to-use and hard-to-misuse utility for building, operating, and automating systems that use zero trust technologies like authenticated encryption (X.509, TLS), single sign-on (OAuth OIDC, SAML), multi-factor authentication (OATH OTP, FIDO U2F), encryption mechanisms (JSON Web Encryption, NaCl), and verifiable claims (JWT, SAML assertions). For more information and docs see the step website and the blog post announcing step.
security security-tools jwt oauth x509 tls oath totp encryption cryptography sso mfa jws jwe joseLemonLDAP::NG - Web Single Sign On and Access Management Free Software
LemonLDAP::NG is a complete and modular Web-SSO system that can run with reverse-proxies or directly on application webservers. It can be used in conjunction with OpenID-Connect, CAS and SAML systems as identity or service provider. It can also be used as proxy between those federation systems.
ldap user-authentication user-management roles-management ldap-auth openid 2fa two-factor-authentication sso single-sign-onSearch Guard - Elasticsearch plugin that offers encryption, authentication, and authorisation
Search Guard is an Elasticsearch plugin that offers encryption, authentication, and authorization. It builds on Search Guard SSL and provides pluggable authentication and authorization modules in addition. Search Guard is fully compatible with Kibana, Logstash and Beats.
elasticsearch-plugin elasticsearch-security elasticsearch-tools securityyosai - A Security Framework for Python applications featuring Authorization (rbac permissions and roles), Authentication (2fa totp), Session Management and an extensive Audit Trail
Yosai is a "security framework" that features authentication, authorization, and session management from a common, intuitive API. Yosai is based on Apache Shiro, written in Java and widely used today.
authentication authorization sessionmanagement rbac security twofactorauth totp two-factorpac4j - The security engine to protect all your Java web applications
pac4j is a Java security engine to authenticate users, get their profiles and manage their authorizations in order to secure Java web applications. It supports most authentication mechanisms: OAuth (Facebook, Twitter, Google, Yahoo...), CAS, HTTP (form, basic auth...), OpenID, SAML, Google App Engine, OpenID Connect, JWT, LDAP, RDBMS, MongoDB and Stormpath and authorization checks.
security authentication authorization security-framework library oauth openidtut-spring-security-and-angular-js - Spring Security and Angular:: A tutorial on how to use Spring Security with a single page application with various backend architectures, ranging from a simple single server to an API gateway with OAuth2 authentication
Spring Security and Angular:: A tutorial on how to use Spring Security with a single page application with various backend architectures, ranging from a simple single server to an API gateway with OAuth2 authentication.
fosite - Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.
The security first OAuth2 & OpenID Connect framework for Go. Built simple, powerful and extensible. This library implements peer-reviewed IETF RFC6749, counterfeits weaknesses covered in peer-reviewed IETF RFC6819 and countermeasures various database attack scenarios, keeping your application safe when that hacker penetrates or leaks your database. OpenID Connect is implemented according to OpenID Connect Core 1.0 incorporating errata set 1 and includes all flows: code, implicit, hybrid.OAuth2 and OpenID Connect are difficult protocols. If you want quick wins, we strongly encourage you to look at Hydra. Hydra is a secure, high performance, cloud native OAuth2 and OpenID Connect service that integrates with every authentication method imaginable and is built on top of Fosite.
oauth oauth2 library sdk security auth authentication authorization openid-connect oauth2-server oauth2-providerDACS - Distributed Access Control System
DACS,a light-weight single sign-on and role-based security system for Apache or server-based software, provides comprehensive authentication capabilities, and powerful, transparent rule-based authorization checking for any web service or CGI program. The latest release of DACS is not available here. Get it at http://dacs.dss.ca/download.html
shiro - Mirror of Apache Shiro
Apache Shiro is a powerful and flexible open-source security framework that cleanly handles authentication, authorization, enterprise session management, single sign-on and cryptography services.
Open Distro for Elasticsearch - Elasticsearch enhanced with enterprise security, alerting, SQL, and more
Open Distro for Elasticsearch is an Apache 2.0-licensed distribution of Elasticsearch enhanced with Enterprise Security, Alerting, SQL, Index Management, k-Nearest Neighbor Search, Performance Analyzer and more.
elastic-search search-engine searchengine aggregations real-time enterprise-search
We have large collection of open source products. Follow the tags from
Tag Cloud >>
Open source products are scattered around the web. Please provide information
about the open source projects you own / you use.
Add Projects.
