SuperTokens - Open source alternative to Auth0 / Firebase Auth / AWS Cognito

  •        134

SuperTokens is an open source alternative to Auth0 / Firebase Auth / AWS Cognito. It supports authentication using email ID and password, Social logins (Google, Facebook, Apple, Github + adding custom providers), Forgot password flow using email, Secure session management, Email verification.

In session management, It provides support to Create, verify, refresh & revoke sessions, Ability to get all sessions given a user ID, Manipulation of session and JWT payloads, Prevents common session vulnerabilities like session fixation, CSRF or brute force attacks.

https://supertokens.io/
https://github.com/supertokens/supertokens-core
https://github.com/supertokens/supertokens-node
https://github.com/supertokens/supertokens-auth-react

Tags
Implementation
License
Platform

   




Related Projects

Authelia - The Single Sign-On Multi-Factor Authentication Server

  •    Go

Authelia is an open-source authentication and authorization server providing two-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for reverse proxies like nginx, Traefik or HAProxy to let them know whether requests should either be allowed or redirected to Authelia's portal for authentication. Authelia works in combination with nginx, Traefik or HAProxy. It can be deployed on bare metal with Docker or on top of Kubernetes.

kratos - Next-gen identity server (think Auth0, Okta, Firebase) with Ory-hardened authentication, MFA, FIDO2, profile management, identity schemas, social sign in, registration, account recovery, service-to-service and IoT auth

  •    Go

We highly recommend reading the Ory Kratos introduction docs to learn more about Ory Krato's background, feature set, and differentiation from other products. Please consider giving back by becoming a sponsor of our open source work on Patreon or Open Collective.

Cierge - 🗝️ Passwordless OIDC authentication done right

  •    CSharp

Cierge is an OpenID Connect server that handles user signup, login, profiles, management, social logins, and more. Instead of storing passwords, Cirege uses magic links/codes and external logins to authenticate your users. Passwords are insecure by default. Cierge does away by the illusion of security passwords give ("forgot password" usually relies upon email-based auth at the end of the day).

Devise - Flexible authentication solution for Rails with Warden

  •    Ruby

Devise is a flexible authentication solution for Rails based on Warden. It supports Database Authentication, Sends emails with confirmation instructions and verifies whether an account is already confirmed during sign in, Reset password and sends reset instructions, tracks sign in count, timestamps and IP address, Locks an account after a specified number of failed sign-in attempts and lot more.


Keycloak - Open Source Identity and Access Management For Modern Applications and Services

  •    Java

Keycloak is an open source Identity and Access Management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. Users authenticate with Keycloak rather than individual applications. This means that your applications don't have to deal with login forms, authenticating users, and storing users. Once logged-in to Keycloak, users don't have to login again to access a different application.

aurelia-auth - :key: Authentication plugin for aurelia

  •    Javascript

aurelia-auth is a token-based authentication plugin for Aurelia with support for popular social authentication providers (Google, Twitter, Facebook, LinkedIn, Windows Live, FourSquare, Yahoo, Github, Instagram ) and a local strategy, i.e. simple username (email) and password. aurelia-auth is a port of the great Satellizer library to ES6 and packaged as an Aurelia plugin.

auth0-react-samples - Auth0 Integration Samples for React Applications

  •    Javascript

These samples demonstrate how to add authentication to a React application with Auth0. Each folder contains a distinct application so that various Auth0 features can be viewed in isolation. You can read about these examples in our React Quickstart. These samples use Auth0's Universal Login which offers the fastest, most secure, and most feature-rich way to add authentication to your app.

auth0-angular-samples - Auth0 Integration Samples for Angular 2+ Applications

  •    TypeScript

These samples demonstrate how to add authentication to an Angular application with Auth0. Each folder contains a distinct application so that various Auth0 features can be viewed in isolation. You can read about these examples in our Angular Quickstart. These samples use Auth0's universal login page which offers the fastest, most secure, and most feature-rich way to add authentication to your app.

omniauth-identity - A simple login and password strategy for OmniAuth.

  •    Ruby

The OmniAuth Identity gem provides a way for applications to utilize a traditional login/password based authentication system without the need to give up the simple authentication flow provided by OmniAuth. Identity is designed on purpose to be as featureless as possible: it provides the basic construct for user management and then gets out of the way.Next, you need to create a model (called Identity by default) that will be able to persist the information provided by the user. Luckily for you, there are pre-built models for popular ORMs that make this dead simple.

omniauth-identity - A simple login and password strategy for OmniAuth.

  •    Ruby

The OmniAuth Identity gem provides a way for applications to utilize a traditional login/password based authentication system without the need to give up the simple authentication flow provided by OmniAuth. Identity is designed on purpose to be as featureless as possible: it provides the basic construct for user management and then gets out of the way. Next, you need to create a model (called Identity by default) that will be able to persist the information provided by the user. Luckily for you, there are pre-built models for popular ORMs that make this dead simple.

Social Login

  •    

LoginRadius enables social login on a website letting users log in through their existing IDs such as Facebook, Twitter, Google, Yahoo and over 15 more! This eliminates long registration process i.e. filling up a long registration form, verifying email ID, remembering another ...

M-Pin - Two Factor Authentication For Web sites

  •    Java

M-Pin Strong Authentication System enables true two-factor authentication for web sites and applications, based on the open source M-Pin Authentication Server and M-Pin Managed Service. The M-Pin™ Managed Service is a highly available, fault tolerant software as a service that issues cryptographic secrets to M-Pin Authentication Servers and Clients.

polymerfire - Polymer Web Components for Firebase

  •    HTML

The firebase-app element is used for initializing and configuring your connection to firebase. firebase-auth is a wrapper around the Firebase authentication API. It notifies successful authentication, provides user information, and handles different types of authentication including anonymous, email / password, and several OAuth workflows.

polymerfire - Polymer Web Components for Firebase

  •    HTML

The firebase-app element is used for initializing and configuring your connection to firebase.firebase-auth is a wrapper around the Firebase authentication API. It notifies successful authentication, provides user information, and handles different types of authentication including anonymous, email / password, and several OAuth workflows.

bell - Third-party login plugin for hapi

  •    Javascript

Third-party authentication plugin for hapi.bell ships with built-in support for authentication using Facebook, GitHub, Google, Google Plus, Instagram, LinkedIn, Slack, Stripe, Twitter, Yahoo, Foursquare, VK, ArcGIS Online, Windows Live, Nest, Phabricator, BitBucket, Dropbox, Reddit, Tumblr, Twitch, Mixer, Salesforce, Pinterest, Discord, DigitalOcean, AzureAD, trakt.tv and Okta. It also supports any compliant OAuth 1.0a and OAuth 2.0 based login services with a simple configuration object.

ASP.NET Membership Micro Web Site

  •    ASPNET

ASP.NET Membership Micro Web Site For Visual Web Developer 2008 Express (C#). Simple start-up web site for user authentication: - Login - Register - Password Recovery - Update User Details - Change Password Multi-language support added. Can be easily translated to any langu...






We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.