|about 2 months ago||5 days ago|
|Apache License 2.0||Apache License 2.0|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Okta to Acquire Auth0 for $6.5B
6 projects | news.ycombinator.com | 3 Mar 2021
You can export everything via a support ticket. We have migration scripts you can use if you come over to FusionAuth or tweak them for any other platforms as well:
AD/AAD Authentication for Apps running in Kubernetes Cluster
2 projects | reddit.com/r/kubernetes | 27 Nov 2022
SaaS Deployment Options
4 projects | news.ycombinator.com | 12 Nov 2022
Using OSS to secure your web-app / app / ...
4 projects | dev.to | 11 Nov 2022
There are some opensource solutions that are trying to solve this issue; one of them is Keycloak. Keycloak solves this problem well but introduces some other problems: It is very complex and custom styling is everything but easy if you want to use something like Next.js to fully integrate the Login/Registration into your webapp.
5 projects | reddit.com/r/kubernetes | 7 Nov 2022
I use the kube-login plugin for kubectl (https://github.com/int128/kubelogin) along with the kube-oidc-proxy (https://github.com/jetstack/kube-oidc-proxy), using Keycloak as my OIDC provider (https://www.keycloak.org) and doing LDAP synchronization to Active Directory.
Recommendation for selfosted DICOM server
3 projects | reddit.com/r/selfhosted | 2 Nov 2022
However I do know there's a DICOM addon för Synology DSM/Synology NAS devices, and that one is based on a combination of dcm4che (https://github.com/dcm4che/dcm4che), weasis (https://nroduit.github.io/en/) as well as Keycload for IAM/identity management (https://www.keycloak.org/) and interface made using Wildfly application server (https://www.wildfly.org/).
Simple web app, how to do auth?
11 projects | reddit.com/r/golang | 2 Nov 2022
IMO Keycloak is pretty nice, like an open source Auth0: https://www.keycloak.org/
Auth0 Verifiable Credentials
5 projects | news.ycombinator.com | 1 Nov 2022
How to create a Keycloak plugin
7 projects | dev.to | 31 Oct 2022
In order to get an idea how to create an authenticator (or any other class you might need that leverages SPI for that matter) I recommend taking a look at Keycloak source code hosted on GitHub - https://github.com/keycloak/keycloak. As you might expect Keycloak has a very large codebase therefore it would be easier to use GitHub search to find the class you might need. In our case you may find authenticators directory interesting - https://github.com/keycloak/keycloak/tree/main/services/src/main/java/org/keycloak/authentication/authenticators. I will not go into detail about existing Keycloak authenticators and their implementations and rather start scaffolding our own authenticator.7 projects | dev.to | 31 Oct 2022
Keycloak is an open-source Identity and Access Management solution. I find it very useful for small to large teams that need to implement their own authentication system but do not have the capacity to develop a secure service themselves. It is written in Java and offers an SPI (Service Provider Interface). This means that it is easily extendable with custom implementations of existing classes and new additions via plugins.
Keycloak with Cognito User Pool
2 projects | reddit.com/r/KeyCloak | 30 Oct 2022
They discussed that there are some issue with the logout endpoint for Cognito, which is why it requires it's own extention here: https://github.com/keycloak/keycloak/issues/10393
What are some alternatives?
authelia - The Single Sign-On Multi-Factor portal for web apps
Apache Shiro - Apache Shiro
Spring Security - Spring Security
IdentityServer - The most flexible and standards-compliant OpenID Connect and OAuth 2.x framework for ASP.NET Core
OPA (Open Policy Agent) - An open source, general-purpose policy engine.
Ory Kratos - Next-gen identity server (think Auth0, Okta, Firebase) with Ory-hardened authentication, MFA, FIDO2, TOTP, WebAuthn, profile management, identity schemas, social sign in, registration, account recovery, passwordless. Golang, headless, API-only - without templating or theming headaches. Available as a cloud service.
Vault - A tool for secrets management, encryption as a service, and privileged access management
caddy-auth-portal - Authentication Plugin for Caddy v2 implementing Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA with App Authenticators and Yubico.
FreeIPA - Mirror of FreeIPA, an integrated security information management solution
jCasbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Java
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
authentik - The authentication glue you need.