zitadel VS Harbor

Im one of the authors of ZITADEL the open source identity and access management solution.

An other Keycloak alternative would be our (I am one of the founders) project ZITADEL.

You could take a look at https://zitadel.ch/ Or curity https://curity.io/product/

I'm biased since I work for ZITADEL (https://github.com/caos/zitadel). Passwordless with FIDO2 has been baked in since the beginning. I reckon that the major Open Source alternatives provide support as well. FIDO2 should work on all major OS and browsers.

And a bigger project i know is zitadel (https://github.com/caos/zitadel)

https://zitadel.ch/ https://github.com/caos/zitadel/

Full disclosure: My company is building ZITADEL, an open source alternative for Auth0 or Keycloak (both still very good, with some drawbacks). https://github.com/caos/zitadel/

We are building a cloud-native IAM over here https://github.com/caos/zitadel

It is written in Go and built around event sourcing for a great audit trail. We already support OIDC, Passwordless, RBAC and working on more features each day.

For those who want to run it on-prem we have a kubernetes operator ready in the next few weeks who also manages the database (cockroach).

We run our own service here https://zitadel.ch with a free tier as well

Feel free to engage with us on GitHub discussions.

I'm not sure if it makes sense to build your own oauth/oidc server. It's fun to learn all these techniques but you have to maintain much more code. You also have to implement security mechanisms from dev and ops perspectives. There are existing implementations. If you want to check out an existing open source implementation in go you could take a look at the implementaion of my company called zitadel. I would love to answer question if there are any.

cat << EOF wget \ https://github.com/goharbor/harbor/releases/download/v2.9.4/\ harbor-offline-installer-v2.9.4.tgz EOF

Now that you know a little more about Cosign, Notary, and DCT, we will take it one step further by using one of these tools: Cosign. For this example, we will use the simple Docker registry:2 reference image to run a simple registry. In a real-world scenario, a managed registry such as Harbor, Amazon ECR, Docker Hub, etc.

Have a look at harbor, you can also use it to follow the same methods for helm charts etc.

Or for something more advanced https://goharbor.io/

Look at https://goharbor.io/

You can host your own image repo if your feeling feisty. Harbor is a graduated project from the CNCF and they are also working on a new implementation called Dragonfly. https://goharbor.io/

Does anybody know whether there could be something like an open/libre container registry?

Maybe the cloud native foundation or the linux foundation could provide something like this to prevent vendor lock-ins?

I was coincidentially trying out harbor again over the last days, and it seems nice as a managed or self-hosted alternative. [1] after some discussions we probably gonna go with that, because we want to prevent another potential lock-in with sonarpoint's nexus.

Does anybody have similar migration plans?

[1] https://goharbor.io

2) Harbor instance registry