authboss - The boss of http auth.

  •        38

Authboss is a modular authentication system for the web. It tries to remove as much boilerplate and "hard things" as possible so that each time you start a new web project in Go, you can plug it in, configure, and start building your app without having to build an authentication system each time. This reduces the potential for mistakes since authentication is not exactly trivial and should hopefully be generic enough to be plugged into all sorts of different web applications.Each module can be turned on simply by importing it and the side-effects take care of the rest. Not all the capabilities of authboss are represented by a module, see use cases to view the supported use cases as well as how to use them in your app.



Related Projects

OAuth2Client - Client library for OAuth2 (currently built against draft 10 of the OAuth2 spec)

An OAuth2 library for Mac OS X & iOS (Cocoa & Cocoa touch).This library is based on draft 10 of the OAuth2 spec. It implements the native application profile and supports the end-user authorization endpoint via an internal or an external user-agent. Furthermore it also supports the user credentials flow by prompting the end-user for their username and password and use them directly to obtain an access token. See the description of the delegate for more information how to choose the authentication flow.

oauth2 - Go OAuth2

oauth2 package contains a client implementation for OAuth 2.0 spec.Or you can manually git clone the repository to $(go env GOPATH)/src/

go-oauth2-server - A standalone, specification-compliant, OAuth2 server written in Golang.

This service implements OAuth 2.0 specification. Excerpts from the specification are included in this README file to describe different grant types. Please read the full spec for more detailed information.Clients must authenticate with client credentials (client ID and secret) when issuing requests to /v1/oauth/tokens endpoint. Basic HTTP authentication should be used.

gologin - Go login handlers for authentication providers (OAuth1, OAuth2)

Package gologin provides chainable login http.Handler's for Google, Github, Twitter, Digits, Facebook, Bitbucket, Tumblr, or any OAuth1 or OAuth2 authentication providers.Choose a subpackage. Register the LoginHandler and CallbackHandler for web logins or the TokenHandler for (mobile) token logins. Get the authenticated user or access token from the request context.

Silhouette - Authentication library for Play Framework

Silhouette is an authentication library for Play Framework applications that supports several authentication methods, including OAuth1, OAuth2, OpenID, CAS, Credentials, Basic Authentication, Two Factor Authentication or custom authentication schemes.

OAuth2 - OAuth2 framework for macOS and iOS, written in Swift.

OAuth2 frameworks for macOS, iOS and tvOS written in Swift 3.0.Since the Swift language is constantly evolving I have adopted a versioning scheme mirroring Swift versions: the framework version's first two digits are always the Swift version the library is compatible with, see releases. Code compatible with brand new Swift versions are to be found on a separate feature branch named appropriately.

goth - Package goth provides a simple, clean, and idiomatic way to write authentication packages for Go web applications

Package goth provides a simple, clean, and idiomatic way to write authentication packages for Go web applications.Unlike other similar packages, Goth, lets you write OAuth, OAuth2, or any other protocol providers, as long as they implement the Provider and Session interfaces.

oauth2 - A Ruby wrapper for the OAuth 2.0 protocol.

A Ruby wrapper for the OAuth 2.0 specification.The AccessToken methods #get, #post, #put and #delete and the generic #request will return an instance of the #OAuth2::Response class.

Apache Oltu - OAuth protocol implementation in Java

Apache Oltu is an OAuth protocol implementation in Java. It also covers others "OAuth family" related implementations such as JWT, JWS and OpenID Connect.

OAuth2 - OAuth2 client implementation for .NET

OAuth2 is a library for user authentication using third-party services (OAuth/OAuth2 protocol) such as Google, Facebook and so on. Current version is 0.9. Status is "release candidate" - despite we already have several real life projects built with usage of this library, we will change status to "stable" only after comprehensive set of acceptance tests is ready and runs successfully.

rest-oauth2-server - Rest OAuth2 Server is a Rails 3 app that let you open up your API and manage end-user authentication and client application authorization implementing the OAuth 2

We are sorry to annunce that due to a lack of time rest oauth2 server is now without a mantainer. For this reason we call the **project dead** and we suggest you to use more solid solution such as Doorkeeper or oPRO. Anyway, we still think this project can be helpful to understand how a OAuth2 server works so if interested in that checkout the code and the whole documentation. It was really nice to have such good people collaborating on this project. P.S. If you are interested about becoming the new mantainer of this project write us.

LROAuth2Client - OAuth2 client for iPhone and iPad apps

Not much documentation here right now, but check out my introductory blog post.A demo project can be found here.

fosite - Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.

The security first OAuth2 & OpenID Connect framework for Go. Built simple, powerful and extensible. This library implements peer-reviewed IETF RFC6749, counterfeits weaknesses covered in peer-reviewed IETF RFC6819 and countermeasures various database attack scenarios, keeping your application safe when that hacker penetrates or leaks your database. OpenID Connect is implemented according to OpenID Connect Core 1.0 incorporating errata set 1 and includes all flows: code, implicit, hybrid.OAuth2 and OpenID Connect are difficult protocols. If you want quick wins, we strongly encourage you to look at Hydra. Hydra is a secure, high performance, cloud native OAuth2 and OpenID Connect service that integrates with every authentication method imaginable and is built on top of Fosite.

MITREid Connect - An OpenID Connect reference implementation in Java on the Spring platform

This project contains a certified OpenID Connect reference implementation in Java on the Spring platform, including a functioning server library, deployable server package, client (RP) library, and general utility libraries. The server can be used as an OpenID Connect Identity Provider as well as a general-purpose OAuth 2.0 Authorization Server.

loginsrv - JWT login microservice with plugable backends such as OAuth2, Github, htpasswd, osiam

loginsrv is a standalone minimalistic login server providing a JWT login for multiple login backends.The following providers (login backends) are supported.

flask-oauthlib - OAuthlib implementation for Flask.

Flask-OAuthlib is an extension to Flask that allows you to interact with remote OAuth enabled applications. On the client site, it is a replacement for Flask-OAuth. But it does more than that, it also helps you to create OAuth providers.Flask-OAuthlib relies on oauthlib.

uaa - CloudFoundry User Account and Authentication (UAA) Server

The UAA is a multi tenant identity management service, used in Cloud Foundry, but also available as a stand alone OAuth2 server. It's primary role is as an OAuth2 provider, issuing tokens for client applications to use when they act on behalf of Cloud Foundry users. It can also authenticate users with their Cloud Foundry credentials, and can act as an SSO service using those credentials (or others). It has endpoints for managing user accounts and for registering OAuth2 clients, as well as various other management functions. The apps all work together with the apps running on the same port (8080) as /uaa, /app and /api.

restify-oauth2 - A simple OAuth 2 endpoint for Restify

This package provides a very simple OAuth 2.0 endpoint for the Restify framework. In particular, it implements the Client Credentials and Resource Owner Password Credentials flows only. Unfortunately, Restify–OAuth2 can't be a simple Restify plugin. It needs to install a route for the token endpoint, whereas plugins simply run on every request and don't modify the server's routing table.