|5 days ago||5 days ago|
|MIT License||Apache License 2.0|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ASP.NET Core rate limiting middleware in .NET 7
3 projects | dev.to | 25 Sep 2022
In your application, you may be using YARP, to build a reverse proxy gateway sitting in front of various backend applications. For example, you may run YARP to listen on example.org, and have it proxy all requests going to this domain while mapping /api and /docs to different web apps running on diffreent servers.
Kestrel as a reverse proxy?
3 projects | reddit.com/r/dotnet | 23 Jun 2022
Microsoft's YARP is exactly this.
My "Artisinal" Ingress
5 projects | dev.to | 18 Apr 2022
If I were optimizing for broad community adoption, I would have written this in Go or Rust. However, I really enjoy writing in C# and I can practice Go and Rust at work. For this reason I decided to go with .NET Core C# and used YARP.
A toolkit for developing high-performance HTTP reverse proxy applications open-sourced by Microsoft
2 projects | reddit.com/r/programming | 20 Feb 2022
The website has this to say:2 projects | reddit.com/r/programming | 20 Feb 2022
8 projects | news.ycombinator.com | 20 Feb 2022
One thing I'd like to add as a potential differentiator as well is that YARP runs very well on Windows and because it's build on ASP.NET Core, can run inside of IIS and directly on HTTP.sys as well (which means we can take advantage of cool features like http.sys request delegation where possible https://github.com/microsoft/reverse-proxy/commit/b9c13dbde9...). This means you get platform portability AND deep platform integration for free.8 projects | news.ycombinator.com | 20 Feb 2022
YARP – Microsoft toolkit to build fast reverse proxy servers
3 projects | news.ycombinator.com | 21 Nov 2021
Anything like HAproxy for Windows?
2 projects | reddit.com/r/sysadmin | 16 Nov 2021
API Framework, the moving parts
5 projects | dev.to | 11 Nov 2021
In my framework i will use YARP. Yarp is an open source reverse proxy built by microsoft. You can read a short summary about YARP in the announcement post.
AD/AAD Authentication for Apps running in Kubernetes Cluster
2 projects | reddit.com/r/kubernetes | 27 Nov 2022
SaaS Deployment Options
4 projects | news.ycombinator.com | 12 Nov 2022
Using OSS to secure your web-app / app / ...
4 projects | dev.to | 11 Nov 2022
There are some opensource solutions that are trying to solve this issue; one of them is Keycloak. Keycloak solves this problem well but introduces some other problems: It is very complex and custom styling is everything but easy if you want to use something like Next.js to fully integrate the Login/Registration into your webapp.
5 projects | reddit.com/r/kubernetes | 7 Nov 2022
I use the kube-login plugin for kubectl (https://github.com/int128/kubelogin) along with the kube-oidc-proxy (https://github.com/jetstack/kube-oidc-proxy), using Keycloak as my OIDC provider (https://www.keycloak.org) and doing LDAP synchronization to Active Directory.
Recommendation for selfosted DICOM server
3 projects | reddit.com/r/selfhosted | 2 Nov 2022
However I do know there's a DICOM addon för Synology DSM/Synology NAS devices, and that one is based on a combination of dcm4che (https://github.com/dcm4che/dcm4che), weasis (https://nroduit.github.io/en/) as well as Keycload for IAM/identity management (https://www.keycloak.org/) and interface made using Wildfly application server (https://www.wildfly.org/).
Simple web app, how to do auth?
11 projects | reddit.com/r/golang | 2 Nov 2022
IMO Keycloak is pretty nice, like an open source Auth0: https://www.keycloak.org/
Auth0 Verifiable Credentials
5 projects | news.ycombinator.com | 1 Nov 2022
How to create a Keycloak plugin
7 projects | dev.to | 31 Oct 2022
In order to get an idea how to create an authenticator (or any other class you might need that leverages SPI for that matter) I recommend taking a look at Keycloak source code hosted on GitHub - https://github.com/keycloak/keycloak. As you might expect Keycloak has a very large codebase therefore it would be easier to use GitHub search to find the class you might need. In our case you may find authenticators directory interesting - https://github.com/keycloak/keycloak/tree/main/services/src/main/java/org/keycloak/authentication/authenticators. I will not go into detail about existing Keycloak authenticators and their implementations and rather start scaffolding our own authenticator.7 projects | dev.to | 31 Oct 2022
Keycloak is an open-source Identity and Access Management solution. I find it very useful for small to large teams that need to implement their own authentication system but do not have the capacity to develop a secure service themselves. It is written in Java and offers an SPI (Service Provider Interface). This means that it is easily extendable with custom implementations of existing classes and new additions via plugins.
Keycloak with Cognito User Pool
2 projects | reddit.com/r/KeyCloak | 30 Oct 2022
They discussed that there are some issue with the logout endpoint for Cognito, which is why it requires it's own extention here: https://github.com/keycloak/keycloak/issues/10393
What are some alternatives?
authelia - The Single Sign-On Multi-Factor portal for web apps
Apache Shiro - Apache Shiro
Spring Security - Spring Security
IdentityServer - The most flexible and standards-compliant OpenID Connect and OAuth 2.x framework for ASP.NET Core
OPA (Open Policy Agent) - An open source, general-purpose policy engine.
Ory Kratos - Next-gen identity server (think Auth0, Okta, Firebase) with Ory-hardened authentication, MFA, FIDO2, TOTP, WebAuthn, profile management, identity schemas, social sign in, registration, account recovery, passwordless. Golang, headless, API-only - without templating or theming headaches. Available as a cloud service.
envoy - Cloud-native high-performance edge/middle/service proxy
Vault - A tool for secrets management, encryption as a service, and privileged access management
caddy-auth-portal - Authentication Plugin for Caddy v2 implementing Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA with App Authenticators and Yubico.
FreeIPA - Mirror of FreeIPA, an integrated security information management solution
jCasbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Java
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.