hydra - OAuth2 server with OpenID Connect - cloud native, security-first, open source API security for your infrastructure

•    Go

ORY Hydra is a hardened OAuth2 and OpenID Connect server optimized for low-latency, high throughput, and low resource consumption. ORY Hydra is not an identity provider (user sign up, user log in, password reset flow), but connects to your existing identity provider through a consent app. Implementing the consent app in a different language is easy, and exemplary consent apps (Go, Node) and SDKs (Go, Node) are provided.Besides mitigating various attack vectors, such as database compromisation and OAuth 2.0 weaknesses, ORY Hydra is able to securely manage JSON Web Keys, and has a sophisticated policy-based access control you can use if you want to. Click here to read more about security.

passport-facebook - Facebook authentication strategy for Passport and Node.js.

•    Javascript

Facebook authentication strategy for Passport.

blockstack-browser - The Blockstack Browser

•    Javascript

The Blockstack Browser allows you to explore the Blockstack internet.Blockstack Browser requires a local instance of Blockstack Core to run. To get started, first install Blockstack Core and then proceed with the installation of Blockstack Browser.

blockstack-core - The reference implementation of Blockstack

•    Python

blockstack-core is the reference implementation of the Blockstack protocol.Blockstack is a new decentralized internet where you own your data and your apps run locally without remote servers.

IdentityServer4 - OpenID Connect and OAuth 2.0 Framework for ASP.NET Core

•    CSharp

IdentityServer is a free, open source OpenID Connect and OAuth 2.0 framework for ASP.NET Core. Founded and maintained by Dominick Baier and Brock Allen, IdentityServer4 incorporates all the protocol implementations and extensibility points needed to integrate token-based authentication, single-sign-on and API access control in your applications. IdentityServer4 is officially certified by the OpenID Foundation and thus spec-compliant and interoperable. It is part of the .NET Foundation, and operates under their code of conduct. It is licensed under Apache 2 (an OSI approved license).For project documentation, please visit readthedocs.

alex - Catch insensitive, inconsiderate writing

•    Javascript

📝 alex — Catch insensitive, inconsiderate writing.Whether your own or someone else’s writing, alex helps you find gender favouring, polarising, race related, religion inconsiderate, or other unequal phrasing in text.

awesome-falsehood - :pill: Curated list of falsehoods programmers believe in.

A curated list of awesome falsehoods programmers believe in. The logic of the world is prior to all truth and falsehood.

Cierge - 🗝️ Passwordless OIDC authentication done right

•    CSharp

Cierge is an OpenID Connect server that handles user signup, login, profiles, management, social logins, and more. Instead of storing passwords, Cirege uses magic links/codes and external logins to authenticate your users. Passwords are insecure by default. Cierge does away by the illusion of security passwords give ("forgot password" usually relies upon email-based auth at the end of the day).

socketio-jwt - Authenticate socket.io incoming connections with JWTs

•    Javascript

Authenticate socket.io incoming connections with JWTs. This is useful if you are build a single page application and you are not using cookies as explained in this blog post: Cookies vs Tokens. Getting auth right with Angular.JS. This repo is supported and maintained by Community Developers, not Auth0. For more information about different support levels check https://auth0.com/docs/support/matrix .

midPoint - Identity Provisioning system

•    Java

midPoint is an Identity Provisioning system. It is a comprehensive tool that synchronizes several identity repositories and databases, manages them and makes them available in a unified form. It belongs to the Identity Provisioning category of the Enterprise Identity Management field, however midPoint itself is not limited to the enterprise. It can work equally well also for cloud services, Internet portals, telcos and service providers and so on.

SSSD - System Security Services Daemon

•    C

SSSD is a system daemon. Its primary function is to provide access to identity and authentication remote resource through a common framework that can provide caching and offline support to the system. It provides PAM and NSS modules, and in the future will D-BUS based interfaces for extended user information. It provides also a better database to store local users as well as extended user data.

passport-google-oauth - Google (OAuth) authentication strategies for Passport and Node.js.

•    Javascript

Google (OAuth) authentication strategies for Passport.

amazon-cognito-identity-js

•    Javascript

You can now use Amazon Cognito to easily add user sign-up and sign-in to your mobile and web apps. Your User Pool in Amazon Cognito is a fully managed user directory that can scale to hundreds of millions of users, so you don't have to worry about building, securing, and scaling a solution to handle user management and authentication.The Amazon Cognito Identity SDK for JavaScript allows JavaScript enabled applications to sign-up users, authenticate users, view, delete, and update user attributes within the Amazon Cognito Identity service. Other functionality includes password changes for authenticated users and initiating and completing forgot password flows for unauthenticated users.

Syncope - Open Source Identity Management

•    Java

Apache Syncope is an Open Source system for managing digital identities in enterprise environments. Identity management (or IdM) means to manage user data on systems and applications, using the combination of business processes and IT. IdM involves considering user attributes, roles, resources and entitlements. It provides access control on Who has access to What, When, How, and Why?

FreeIPA - Identity and Access Management for Linux

•    C

FreeIPA is an integrated Identity and Authentication solution for Linux/UNIX networked environments. A FreeIPA server provides centralized authentication, authorization and account information by storing data about user, groups, hosts and other objects necessary to manage the security aspects of a network of computers.

cordova-plugin-googleplus - :heavy_plus_sign: Cordova plugin to login with Google Sign-In on iOS and Android

•    Objective-C

This plugin allows you to authenticate and identify users with Google Sign-In on iOS and Android. Out of the box, you'll get email, display name, given name, family name, profile picture url, and user id. You can also configure it to get an idToken and serverAuthCode. This plugin only wraps access to the Google Sign-In API. Further API access should be implemented per use-case, per developer.

AspNet5IdentityServerAngularImplicitFlow - OpenID Connect Implicit Flow with Angular and ASP

•    CSharp

OpenID Connect Implicit Flow with Angular and ASP.NET Core 2.1 IdentityServer4

passport-twitter - Twitter authentication strategy for Passport and Node.js.

•    Javascript

Twitter authentication strategy for Passport.

passport-github - GitHub authentication strategy for Passport and Node.js.

•    Javascript

GitHub authentication strategy for Passport.

spiffe - The SPIFFE Project

A standard defining how services identify themselves to each other. These are called SPIFFE IDs and are implemented as Uniform Resource Identifiers (URIs). A standard for encoding SPIFFE IDs in a cryptographically-verifiable document called a SPIFFE Verifiable Identity Document or SVIDs.