Keycloak VS Ory Kratos

Compare Keycloak vs Ory Kratos and see what are their differences.

Keycloak

Open Source Identity and Access Management For Modern Applications and Services (by keycloak)

Ory Kratos

Next-gen identity server (think Auth0, Okta, Firebase) with Ory-hardened authentication, MFA, FIDO2, TOTP, WebAuthn, profile management, identity schemas, social sign in, registration, account recovery, passwordless. Golang, headless, API-only - without templating or theming headaches. Available as a cloud service. (by ory)
Our great sponsors
  • InfluxDB - Build time-series-based applications quickly and at scale.
  • Sonar - Write Clean Java Code. Always.
  • SaaSHub - Software Alternatives and Reviews
Keycloak Ory Kratos
162 31
14,847 8,136
2.2% 1.6%
9.9 9.5
4 days ago 3 days ago
Java Go
Apache License 2.0 Apache License 2.0
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

Keycloak

Posts with mentions or reviews of Keycloak. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-01-21.

Ory Kratos

Posts with mentions or reviews of Ory Kratos. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-12-22.

What are some alternatives?

When comparing Keycloak and Ory Kratos you can also consider the following projects:

authelia - The Single Sign-On Multi-Factor portal for web apps

Apache Shiro - Apache Shiro

Spring Security - Spring Security

IdentityServer - The most flexible and standards-compliant OpenID Connect and OAuth 2.x framework for ASP.NET Core

OPA (Open Policy Agent) - An open source, general-purpose policy engine.

Vault - A tool for secrets management, encryption as a service, and privileged access management

authentik - The authentication glue you need.

FreeIPA - Mirror of FreeIPA, an integrated security information management solution

caddy-auth-portal - Authentication Plugin for Caddy v2 implementing Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA with App Authenticators and Yubico.

jCasbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Java

oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.

dex - OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors