zitadel
Pomerium
zitadel | Pomerium | |
---|---|---|
9 | 26 | |
403 | 3,856 | |
- | 1.1% | |
9.7 | 9.7 | |
about 2 years ago | 1 day ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
zitadel
-
My Work
Im one of the authors of ZITADEL the open source identity and access management solution.
-
Authentik or Keycloak
An other Keycloak alternative would be our (I am one of the founders) project ZITADEL.
-
OS Alternative to gcp identity plattform?
You could take a look at https://zitadel.ch/ Or curity https://curity.io/product/
-
What's the biggest missing piece of the puzzle in the self-hosted universe?
I'm biased since I work for ZITADEL (https://github.com/caos/zitadel). Passwordless with FIDO2 has been baked in since the beginning. I reckon that the major Open Source alternatives provide support as well. FIDO2 should work on all major OS and browsers.
-
Event-driven architecture resources
And a bigger project i know is zitadel (https://github.com/caos/zitadel)
-
Fintech startup essentials: free and freemium tools to help you build your fintech company
https://zitadel.ch/ https://github.com/caos/zitadel/
-
Successful SaaS founders: How do you handle auth?
Full disclosure: My company is building ZITADEL, an open source alternative for Auth0 or Keycloak (both still very good, with some drawbacks). https://github.com/caos/zitadel/
-
Okta Signs Definitive Agreement to Acquire Auth0
We are building a cloud-native IAM over here https://github.com/caos/zitadel
It is written in Go and built around event sourcing for a great audit trail. We already support OIDC, Passwordless, RBAC and working on more features each day.
For those who want to run it on-prem we have a kubernetes operator ready in the next few weeks who also manages the database (cockroach).
We run our own service here https://zitadel.ch with a free tier as well
Feel free to engage with us on GitHub discussions.
-
Thinking about User <> Auth modelling in Go
I'm not sure if it makes sense to build your own oauth/oidc server. It's fun to learn all these techniques but you have to maintain much more code. You also have to implement security mechanisms from dev and ops perspectives. There are existing implementations. If you want to check out an existing open source implementation in go you could take a look at the implementaion of my company called zitadel. I would love to answer question if there are any.
Pomerium
-
OAuth server for authorization
Option 3: Pomerium might be an alternative as well.
-
Moving from Google workspace to Microsoft 365 and implementing Zero Trust
That is not how you do Zero Trust. You want to use an Identity Aware Proxy. There are lots of ways you can implement this with Google as your core auth. For example Pomerium or oauth2-proxy.
- We have pushed an emergency fix to Pomerium, please upgrade your versions
-
Which reverse proxy are you using?
I’m really surprised this sub has no love for Pomerium. I feel like it’s as simple as Caddy with all the security benefits of Traefik.
-
Is anyone using Pomerium (identity-aware proxy)? I don't understand it.
I am not sure if I understand how Pomerium works (or any identity-aware proxy).
-
AD/AAD Authentication for Apps running in Kubernetes Cluster
Pomerium sidecar.
-
What is the best way to implement an SSO for several existing web apps?
Just want to drop https://www.pomerium.com/ here. We use it at our company with ~1500 people with many apps behind the proxy. It also supports JWT for the backend, so you can integrate your apps easily without having to worry about the OAuth flow and also your apps are protected from random internet attacks.
-
Web Server - Hide Public IP
You’ve got to protect. Anonymity is not going to work. Pomerium is another option in addition to those already suggested. https://github.com/pomerium/pomerium
-
Good stand-alone VPN solution
I am currently looking at Wireguard/Tailscale (Wireguard based) options - early days for me so far. Also planning to look at something like Pomerium for a zero trust approach. https://www.pomerium.com/
- Should i trust Authelia when exposing web services to the internet?
What are some alternatives?
authelia - The Single Sign-On Multi-Factor portal for web apps
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
wordpress-proxy-auth-plugin - The Wordpress Proxy Auth Plugin helps developers/DevOps/admins easily implement authentication and authorization for WordPress by using a JWT token provided by a reverse proxy.
Nginx Proxy Manager - Docker container for managing Nginx proxy hosts with a simple, powerful interface
haproxy-lua-oauth - JWT Validation implementation for HAProxy Lua host
Gravitational Teleport - The easiest, and most secure way to access and protect all of your infrastructure.
awesome-iam - 👤 Identity and Access Management knowledge for cloud platforms
angular-auth-oidc-client - npm package for OpenID Connect, OAuth Code Flow with PKCE, Refresh tokens, Implicit Flow
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
LDAP Account Manager (LAM) - LDAP Account Manager
traefik - The Cloud Native Application Proxy