casdoor
SuperTokens Community
Our great sponsors
casdoor | SuperTokens Community | |
---|---|---|
37 | 114 | |
8,028 | 11,898 | |
- | 5.0% | |
0.0 | 9.3 | |
3 months ago | 4 days ago | |
Go | Java | |
Apache License 2.0 | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
casdoor
-
Keycloak open redirect: wildcard redirect URIs can be exploited to steal tokens
I'm using Casdoor: https://github.com/casbin/casdoor and glad to see it only has ~77,000 LOC according to the shared link.
Keycloak was good but has too much legacy for 10+ years. Casdoor is pretty new and has become a good replacement for Keycloak for me with more functionalities.
- CSRF Vulnerability Leads to Account Takeover in Casdoor IdP
- Casdoor: Open source Payment Gateway (PayPal, Stripe), SSO and SaaS subscription management platform in Golang
- ๐ฆโก๏ธ Casdoor
-
Help needed - is there a product that provides the auth functionality we need?
Access keys & secrets are supported: https://github.com/casdoor/casdoor/pull/1971
-
Keycloak โ Open-Source Identity and Access Management Interview
Looking at your username, it would be nice to mention that you are one of the main developers behind the tool instead of making it sound like you are unrelated: https://github.com/casbin/casbin/graphs/contributors https://github.com/casdoor/casdoor/graphs/contributors
-
Casdoor: a new open source SSO/IAM written in Go, with beautiful web UI, OIDC, OAuth 2.0, SAML, CAS, LDAP, WebAuthn and 2FA
Apparently they even removed the Chinese Tracker to Baidu now.
- An open-source Identity and Access Management (IAM) / Single-Sign-On (SSO) SaaS platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, SMS, 2FA, Captcha, Casbin and subscription management
- Casdoor: an open-source Identity and Access Management (IAM) platform with beautiful web UI supporting OAuth 2.0, OIDC, SAML and CAS
SuperTokens Community
-
Ask HN: Simple Auth for Website
I get what you are trying to do, but it feels a bit insecure. Why not use an OSS passwordless project like https://github.com/supertokens/supertokens-core/ or https://github.com/teamhanko/hanko
-
Auth0 increases price by 300%
Checkout https://supertokens.com/ - open source alternative to Auth0. It has a lot of free features and if you self host it, it's free at any scale. For our managed service, it's still far cheaper compared to Auth0.
-
๐ Top 12 Open Source Auth Projects Every Developer Should Know ๐
SuperTokens
-
Free auth products you can start using today
Building auth for your SaaS product shouldn't be hard. Try these free solutions for your next project ๐ http://supabase.com/auth free up to 50k users/month http://firebase.google.com/products/auth free up to 50k users/month http://aws.amazon.com/cognito free up to 50k users/month http://clerk.com free up to 10k users/month http://kinde.com free up to 7.5k users/month https://www.descope.com free up to 7.5k users/month https://supertokens.com free up to 5k users/month Save for later! Besides users/month what other features do you look for in auth products?
- What is the best way to implement authentication that provides Google Auth, Facebook Auth, etc.
-
The Developer-First Security Week free event (Aug 7-11)
The Developer-First Security Week event is on August 7-11. The theme is shifting left with a security mindset with top expert speakers from Snyk, BoxyHQ, Microsoft, Google, Gitlab, Bearer, SuperTokens, Cerbos, and more...Come learn with us as the speakers dive into complex topics on Authorization, Authentication, Data Privacy.
-
What is the easiest authentication method with nodejs currently available?
Supertokens dont reinvent, just reuse
-
Top open source security devtools you need to know about
GitHub: https://github.com/supertokens/supertokens-core Website: https://supertokens.com/
-
Introducing Pezzo: Open-source AI Development Toolkit ๐
Signing up - You're not actually signing up to anything. Supertokens (open source auth provider) is running locally on your machine. It's just a means for you to be able to have an account (and soon invite others to your project to collaborate together). The data doesn't leave your computer.
- Supertokens: Open-Source Alternative to Auth0 / Firebase Auth / AWS Cognito
What are some alternatives?
casbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
Ory Kratos - Next-gen identity server replacing your Auth0, Okta, Firebase with hardened security and PassKeys, SMS, OIDC, Social Sign In, MFA, FIDO, TOTP and OTP, WebAuthn, passwordless and much more. Golang, headless, API-first. Available as a worry-free SaaS with the fairest pricing on the market!
Ory Hydra - OpenID Certifiedโข OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
zitadel - ZITADEL - The best of Auth0 and Keycloak combined. Built for the serverless era.
authentik - The authentication glue you need.
authelia - The Single Sign-On Multi-Factor portal for web apps
Grant - OAuth Proxy
springboot-keycloak-openldap - The goal of this project is to create a simple Spring Boot REST API, called simple-service, and secure it with Keycloak. Furthermore, the API users will be loaded into Keycloak from OpenLDAP server.
pam-keycloak-oidc - PAM module connecting to Keycloak for user authentication using OpenID Connect/OAuth2, with MFA/2FA/TOTP support