kanidm
solid
Our great sponsors
kanidm | solid | |
---|---|---|
12 | 117 | |
2,073 | 8,173 | |
8.0% | 0.0% | |
9.8 | 0.0 | |
6 days ago | over 1 year ago | |
Rust | HTML | |
Mozilla Public License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
kanidm
-
Simple LDAP / user management
Kanidm is a identity management platform with a ldap compatible interface, sso and more. It's still young, but the author works on the 389 ldap server at suse, so knows how to build a secure ldap alternative :)
-
Hacker News top posts: Oct 16, 2021
Kanidm: A simple, secure and fast identity management platform\ (22 comments)
-
Kanidm: A simple, secure and fast identity management platform
Here is the OAuth/OIDC issue: https://github.com/kanidm/kanidm/issues/278
They are talking here: https://github.com/kanidm/kanidm/pull/485 about being an IdP with support for OIDC, so once that is implemented you could probably federate to Keycloak (or any other compliant IdP).
Might be worth filing an issue, I'm sure they'd love the feedback.
Interesting that they are choosing to provide an integrated solution including user management and OAuth IdP ( https://github.com/kanidm/kanidm/pull/485 ) rather than plug into existing open source or even commercial offerings.
Here's a design doc about their OAuth choices: https://github.com/kanidm/kanidm/blob/master/designs/oauth.r...
It would seem simpler to go with the Ory approach of "best in breed" for, say network management tooling (most of which they already have implemented), and then integrate with Keycloak, Okta, FusionAuth, the Ory suite, etc for user management. Maybe they didn't want to do that because there are synergies with integrated user management? I dunno, seems like there are a lot of user management tools out there.
I also find it interesting that they explicitly disallow a goal of building a better LDAP server. I think there's a lot of room to run in that. My employer has had users show a fair bit of interest in a modern experience with LDAP layered on top ( https://github.com/FusionAuth/fusionauth-issues/issues/954 ) and I talked to someone at a conference that had built a whole business out of virtual LDAP: https://www.radiantlogic.com . They were working with companies with multiple LDAP based auth systems, and providing a way to have apps see one view of the user.
Maybe kanidm isn't that project, but it seems like a modern OSS LDAP implementation would be welcomed by the software community.
Disclosure: I work at FusionAuth.
-
Whats your favourite open source Rust project that needs more recognition?
Kanidm, it might not sound as fun or exciting but this sound engineering driven by exceptional people. Similarly, concread.
-
What's everyone working on this week (36/2021)?
saml-rs, creating a SAML IdP in rust, kind of spun out of trying to do it for Kanidm.
-
What are SUSE's biggest contributions to the Linux world?
And now they employ one of the lead 389 Directory Server developers (now the default in SUSE instead of OpenLDAP which is is still available but is going to be depreciated). The same person is also the lead developer of Kandim, a new beta IDM that looks really promising (but is likely quite some time from being ready for enterprise production).
solid
-
Simple Lasts Longer
This doesn't support the various consumer cloud storage APIs, but you've just reminded me of a project I ran into years ago that seems to still be around: https://remotestorage.io/
There's also Solid which attempts to do something similar: https://solidproject.org/
-
Manas: Storage servers confirming to Solid protocol
Solid is a web native protocol to enable interoperable, read-write, collaborative, and decentralized web, truer to web's original vision.
-
Manas: Solid protocol storage server in Rust for decentralized web
Manas project(https://github.com/manomayam/manas/tree/main) aims to create a modular framework and ecosystem to create correct, robust storage servers adhering to Solid protocol in rust.
[Solid](https://solidproject.org/) is a web native protocol to enable interoperable, read-write, collaborative, and decentralized web, truer to web's original vision.
Solid adds to existing Web standards to realise a space where individuals can maintain their autonomy, control their data and privacy, and choose applications and services to fulfil their needs.
-
The problem with federated web apps
Tim Berners-Lee's Solid project is working on that. Put data in "pods" that are stored on pod servers, which are federated. You can self-host.
It could be a federated layer of identity & personal content decoupled from social platforms.
-
Update of the RDF and SPARQL (RDF star) families of specifications
Check out https://solidproject.org (If you want a short intro I recently gave a ~30min talk about it: https://noeldemartin.com/fosdem)
-
Web Application Authentication
I haven't tried, but SOLID pods would probably do the trick. https://solidproject.org/
-
Exploring the Solid Standard and Apps Built on Solid
I wanted to start a discussion about the Solid standard (https://solidproject.org/) and the apps built on top of it. Solid is a technology developed by Sir Tim Berners-Lee, the creator of the World Wide Web, that aims to give users control over their personal data. It's based on the idea of "personal pods," where users store their data in a secure and private way, and can choose who has access to it.
-
JSON compression in the browser, with gzip and the Compression Streams API.
This example was created for the specific needs of Web Storage, File and Solid Pod persistence, for a scaling representation of JSON application state.
-
How can we make the internet controlled by the people rather than corporations?
Well, if you want a decentralised web without going down the snake-oil of blockchain stuff, then Tim-Berners Lee is actually working on a neat project y'all can get involved with today called the Solid Project!
-
How does everyone feel about AI art and crypto-currency?
If you're interested in a decentralised web, then Tim Berners-Lee is already part of an open-source crew making that possible without the blockchain over on the Solid Project - take a look and contribute if you're interested in that kind of thing!
What are some alternatives?
Mastodon - Your self-hosted, globally interconnected microblogging community
logseq - A local-first, non-linear, outliner notebook for organizing and sharing your personal knowledge base. Use it to organize your todo list, to write your journals, or to record your unique life.
orbitdb - Peer-to-Peer Databases for the Decentralized Web
volta - Volta: JS Toolchains as Code. ⚡
Ory Kratos - Next-gen identity server replacing your Auth0, Okta, Firebase with hardened security and PassKeys, SMS, OIDC, Social Sign In, MFA, FIDO, TOTP and OTP, WebAuthn, passwordless and much more. Golang, headless, API-first. Available as a worry-free SaaS with the fairest pricing on the market!
Rust-Bio - This library provides implementations of many algorithms and data structures that are useful for bioinformatics. All provided implementations are rigorously tested via continuous integration.
Peergos - A p2p, secure file storage, social network and application protocol
Iron - An Extensible, Concurrent Web Framework for Rust
Nullboard - Nullboard is a minimalist kanban board, focused on compactness and readability.
hyperhyperspace-core - A library to create p2p applications, using the browser as a full peer.
specification - Solid Technical Reports
389ds-server - Ansible role to configure 389DS