Ferrum
zitadel
Ferrum | zitadel | |
---|---|---|
1 | 9 | |
5 | 403 | |
- | - | |
8.3 | 9.7 | |
10 days ago | about 2 years ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Ferrum
-
Easily add authorization in you apps in 1-2 min
Personally, I like KeyCloak and use it where it is possible. About 2 years ago I had to expand my technology stack and I started to write apps using Golang. These apps are WEB API that use Authorization on KeyCloak server. When API grows and become more complicated, it is very important to make automated integration tests. For authorization we using separate from demo/production server, and it is important to make code portable to any machine, therefore the most convenient way is to start all infrastructure before any test and stop when test ends with any persistent data cleanup at the end. Such approach can't be easily and fast implemented using Keycloak. Therefore, we created Ferrum authorization server that could be run and stopped from code and with API compatible with KeyCloak (with similar behavior and endpoints). Ferrum could be used not only for tests purposes but also like a full-fledged authorization server.
zitadel
-
My Work
Im one of the authors of ZITADEL the open source identity and access management solution.
-
Authentik or Keycloak
An other Keycloak alternative would be our (I am one of the founders) project ZITADEL.
-
OS Alternative to gcp identity plattform?
You could take a look at https://zitadel.ch/ Or curity https://curity.io/product/
-
What's the biggest missing piece of the puzzle in the self-hosted universe?
I'm biased since I work for ZITADEL (https://github.com/caos/zitadel). Passwordless with FIDO2 has been baked in since the beginning. I reckon that the major Open Source alternatives provide support as well. FIDO2 should work on all major OS and browsers.
-
Event-driven architecture resources
And a bigger project i know is zitadel (https://github.com/caos/zitadel)
-
Fintech startup essentials: free and freemium tools to help you build your fintech company
https://zitadel.ch/ https://github.com/caos/zitadel/
-
Successful SaaS founders: How do you handle auth?
Full disclosure: My company is building ZITADEL, an open source alternative for Auth0 or Keycloak (both still very good, with some drawbacks). https://github.com/caos/zitadel/
-
Okta Signs Definitive Agreement to Acquire Auth0
We are building a cloud-native IAM over here https://github.com/caos/zitadel
It is written in Go and built around event sourcing for a great audit trail. We already support OIDC, Passwordless, RBAC and working on more features each day.
For those who want to run it on-prem we have a kubernetes operator ready in the next few weeks who also manages the database (cockroach).
We run our own service here https://zitadel.ch with a free tier as well
Feel free to engage with us on GitHub discussions.
-
Thinking about User <> Auth modelling in Go
I'm not sure if it makes sense to build your own oauth/oidc server. It's fun to learn all these techniques but you have to maintain much more code. You also have to implement security mechanisms from dev and ops perspectives. There are existing implementations. If you want to check out an existing open source implementation in go you could take a look at the implementaion of my company called zitadel. I would love to answer question if there are any.
What are some alternatives?
go-scim - Building blocks for servers implementing Simple Cloud Identity Management v2
authelia - The Single Sign-On Multi-Factor portal for web apps
Ory Oathkeeper - A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming HTTP(s) requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.
wordpress-proxy-auth-plugin - The Wordpress Proxy Auth Plugin helps developers/DevOps/admins easily implement authentication and authorization for WordPress by using a JWT token provided by a reverse proxy.
Simple CRUD App w/ Gorilla/Mux, MariaDB - Simple CRUD Application with Go, Gorilla/mux, MariaDB, Redis.
haproxy-lua-oauth - JWT Validation implementation for HAProxy Lua host
go-todo - Todo app graphql api
awesome-iam - 👤 Identity and Access Management knowledge for cloud platforms
Ory Kratos - Next-gen identity server replacing your Auth0, Okta, Firebase with hardened security and PassKeys, SMS, OIDC, Social Sign In, MFA, FIDO, TOTP and OTP, WebAuthn, passwordless and much more. Golang, headless, API-first. Available as a worry-free SaaS with the fairest pricing on the market!
angular-auth-oidc-client - npm package for OpenID Connect, OAuth Code Flow with PKCE, Refresh tokens, Implicit Flow
goscim - SCIM server written in Go
LDAP Account Manager (LAM) - LDAP Account Manager