caddy-auth-portal
Authentication Plugin for Caddy v2 implementing Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA with App Authenticators and Yubico. (by greenpau)
vouch-proxy
an SSO and OAuth / OIDC login solution for Nginx using the auth_request module (by vouch)
Our great sponsors
| caddy-auth-portal | vouch-proxy | |
|---|---|---|
| 15 | 48 | |
| 668 | 2,630 | |
| - | 1.7% | |
| 9.0 | 3.2 | |
| over 2 years ago | about 1 month ago | |
| Go | Go | |
| Apache License 2.0 | MIT License |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
caddy-auth-portal
Posts with mentions or reviews of caddy-auth-portal.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-01-10.
-
Any recommendations for internal network inventory website?
Caddy Auth Portal. Also has the advantage of providing unified secure 2FA.
-
Why I'm Using HTTP Basic Auth in 2022
I am very happy with the this caddy extension: https://github.com/greenpau/caddy-auth-portal.
Sorts this precise use case for me, need for common login provider. Without the banality of basic auth.
-
Moving reverse proxies
Check out caddy-auth-portal
-
Authentik is the easy Single Sign On tool we all need!
After dabbling with Caddy's auth-portal, nginx Vouch proxy, Keycloak and Authelia I found Authentik.
- Has anyone tried the auth-portal Plugin for Caddy?
-
Discussion: Which reverse proxy is the best?
Usually with this plugin: https://github.com/greenpau/caddy-auth-portal
- Narrowing down the awesome selfhosted list
-
Anyone with experience setting up SSO/Dashboard/Okta alternative?
Thereβs caddy-auth-portal which Iβve not used myself, but heard good things about.
-
Single Sign On (SSO) with subdomains using Caddy v2
I hope this post helps setting up your SSO with Caddy. I'd highly recommend trying it out if you find yourself always needing to authenticate with different services on your domain β and check out caddy-auth-portal's docs for even more advanced features!
-
Migrating from LastPass to Bitwarden - opinions?
This sounds like an XY Problem. It sounds like you're missing a good IAP solution to deal with access controls. Something like oauth2_proxy, Keycloak, Pomerium, etc. Hell, I've even set up a basic IAP with Caddy and Oauth Portal.
vouch-proxy
Posts with mentions or reviews of vouch-proxy.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-06-23.
- I'm looking for an SSO server/reverse proxy with features I'm not sure exist
-
Keycloak vs. Authentik vs. Authelia, help choose SSO
Look into vouch proxy
- Solf-hosted login form for self-hosted app ?
- AWS EKS front end authentication with Okta?
-
Is there something like Keycloak or Authelia that supports both forward auth and identity providers?
Vouch proxy is designed for this usage: https://github.com/vouch/vouch-proxy I don't think there are any nice UIs to configure it though so you'll need to be familiar with running it yourself.
-
cloudflare and ingress-nginx
Not sure this is a "best practice", but it lets me keep control of the Ingress resources inside their YAML configs. I've also layered Vouch Proxy into the ingress configurations to require SSO/MFA auth to access the resources behind the Ingress. Cloudflare has the ability to do this, but I found it cumbersome to keep track of the configs outside the K8s cluster.
-
Single Sign on for reverse proxy (NGINX Proxy Manager)
I've used vouch proxy for my own stuff previously, before more recently moving to Cloudflare Access. vouch can be slightly janky at times to get working right, but once set up, it's been solid.
-
Yubikey support in Jellyfin
For example: nginx -> Vouch proxy -> KeyCloak -> Jellyfin
-
Jump Host SSO to Internal Apps
While this works, we were hoping to make access a bit easier with say an OpenID Connect SSO and reverse-proxy solution. I've seen Vouch Proxy, https://github.com/vouch/vouch-proxy which is really just SSO on top of nginx, but I'm wondering if there's a simpler way to do this.
-
Do you prefer to build your own auth, or use some library or provider (like auth0, Next Auth, Supabase, etc)?
You seem to be quite knowledgeable and a minimal provider with just the bare minimum would suffice for you. Have a look at Vouch Proxy, it does one thing and it does it well.
What are some alternatives?
When comparing caddy-auth-portal and vouch-proxy you can also consider the following projects:
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
jfa-go - a better way to manage your Jellyfin users, now in go
authentik - The authentication glue you need.
caddy-security - π Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. π Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. π Authorization with JWT/PASETO tokens. π
authelia - The Single Sign-On Multi-Factor portal for web apps
dex - OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors
traefik-forward-auth - Minimal forward authentication service that provides Google/OpenID oauth based login and authentication for the traefik reverse proxy
Nginx Proxy Manager - Docker container for managing Nginx proxy hosts with a simple, powerful interface
caddy-auth-portal vs Keycloak
vouch-proxy vs oauth2-proxy
caddy-auth-portal vs oauth2-proxy
vouch-proxy vs jfa-go
caddy-auth-portal vs authentik
vouch-proxy vs authentik
caddy-auth-portal vs caddy-security
vouch-proxy vs authelia
caddy-auth-portal vs dex
vouch-proxy vs traefik-forward-auth
caddy-auth-portal vs Nginx Proxy Manager
vouch-proxy vs Nginx Proxy Manager