|almost 3 years ago||5 months ago|
|Apache License 2.0||MIT License|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
I create an end-to-end example and guide on how to use Traefik with Pomerium identity-aware access proxy in Forward Auth and Proxy mode on Kubernets with Helm/Helmfile
5 projects | /r/selfhosted | 4 May 2021
I know from past discussion here some recommended solutions where thomseddon/traefik-forward-auth, vouch-proxy, oauth2-proxy or louketo-proxy aka Keycloak Gatekeeper. I personally think Pomerium is the most versatile and powerful solution out there, especially if you are on Kubernetes or even Docker. Pomerium doesn't yet have the mature documentation, hence this guide.
We haven't tracked posts mentioning pam-keycloak-oidc yet.
Tracking mentions began in Dec 2020.
What are some alternatives?
traefik-forward-auth - Minimal forward authentication service that provides Google/OpenID oauth based login and authentication for the traefik reverse proxy
authentik - The authentication glue you need.
casdoor - An open-source UI-first Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA and RADIUS
kubelogin - kubectl plugin for Kubernetes OpenID Connect authentication (kubectl oidc-login)
node-oidc-provider - OpenID Certified™ OAuth 2.0 Authorization Server implementation for Node.js
Ory Hydra - OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
Traefik-with-Pomerium-Forward-Auth-and-Proxy-on-Kubernetes-with-Helm - Traefik with Pomerium in Forward Auth and Proxy mode on Kubernetes with Helm/Helmfile
keycloak-theme-sample - Sample Keycloak Theme
vouch-proxy - an SSO and OAuth / OIDC login solution for Nginx using the auth_request module