Go Authentication

Open-source Go projects categorized as Authentication

Top 23 Go Authentication Projects

  • pocketbase

    Open Source realtime backend in 1 file

    Project mention: Show HN: SpacetimeDB – The database that replaces your server | news.ycombinator.com | 2023-08-16

    Really cool project, thanks for making it available for others to look at. It really reminds me of https://pocketbase.io/ which has sorta the same idea and can be extended with go/js. How does the database work under the hood? Is it also based on sqlite? Are rust modules built with a special runtime in mind like tokio or?

  • authelia

    The Single Sign-On Multi-Factor portal for web apps

    Project mention: Why would anyone need AD/AAD when you can manage devices through Saltstack? | /r/sysadmin | 2023-08-05

    https://github.com/saltstack/salt https://github.com/chocolatey/choco https://github.com/nextcloud https://github.com/authelia/authelia https://github.com/grafana/grafana

  • Revelo Payroll

    Free Global Payroll designed for tech teams. Building a great tech team takes more than a paycheck. Zero payroll costs, get AI-driven insights to retain best talent, and delight them with amazing local benefits. 100% free and compliant.

  • casdoor

    An open-source Identity and Access Management (IAM) / Single-Sign-On (SSO) platform with web UI supporting OAuth 2.0, OIDC, SAML, CAS, LDAP, WebAuthn, TOTP, MFA and RADIUS

    Project mention: CSRF Vulnerability Leads to Account Takeover in Casdoor IdP | news.ycombinator.com | 2023-09-21
  • go-grpc-middleware

    Golang gRPC Middlewares: interceptor chaining, auth, logging, retries and more.

    Project mention: Seeking advice on implementing a tinyurl-like service using Go and gRPC. | /r/golang | 2023-05-24

    Hello, Those interviews are even crazy for internship. Anyway 1. Try to find a simple CRUD example online. You can check [this](https://tutorialedge.net/golang/go-grpc-beginners-tutorial/) 2. For logging you can check [go-grpc-middleware](https://github.com/grpc-ecosystem/go-grpc-middleware) 3. You can grpc-gateway in case they want some REST endpoints too 4. Use base62 to encode your url. So at least 2 columns in your table **shortenedUrl** and **url** 5. For such a project no need to use an ORM ( it's not advised anyway ). Implement 2 functions, one to insert into the db and the other one to read from the db. Remember to use transaction though 5. For unit tests go with the standard library and mock the 2 functions ( erroneous and valid cases )

  • zitadel

    ZITADEL - The best of Auth0 and Keycloak combined. Built for the serverless era.

    Project mention: Zitadel v2.33.0 – SMS/Email OTP and Custom SAML Attributes | news.ycombinator.com | 2023-08-21
  • authentik

    The authentication glue you need.

    Project mention: Issues with authentik | /r/NixOS | 2023-07-07

    Hello ! I am hosting a server under NixOS with multiple services, and to simply the identity management, I use authentik (https://goauthentik.io/) which can be compared to keycloak. Everything works fine until I try to enable mastodon to host an instance : authentik returns an error 400 and nothing changes this but disabling mastodon. Does anyone have an idea of what could be the cause of this ?

  • gotrue

    An SWT based API for managing users and issuing SWT tokens.

    Project mention: FATA[0000] Error 1130: Host '' is not allowed to connect to this MySQL server | /r/AskProgramming | 2023-05-19

    I am testing gotrue netlift module https://github.com/netlify/gotrue

  • SonarLint

    Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.

  • Ory Oathkeeper

    A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming HTTP(s) requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.

  • S.S.Octopus

    sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services

    Project mention: Use OpenZiti to secure your monitoring | news.ycombinator.com | 2023-01-09

    2. An identity aware SSO proxy by Buzzfeed[0]

    I really like Buzzfeed's SSO implementation, but it hasn't received updates in a while and doesn't seem to be maintained to me. I could absolutely see OpenZiti replacing this for me.

    I really like Wireguard and have absolutely no complaints with it -- but if OpenZiti could replace this as well and match the performance I get on Wireguard I would consider implementing it at home (and would probably be a happy enough customer to push for it at work).

    One non-typical use-case I use Wireguard for is being able to do remote game streaming to my Windows hosts via Moonlight+Nvidia Gamestream. Would anyone be able to (anecdotally or scientifically), share how well a use-case like this would work with OpenZiti?

    [0] https://github.com/buzzfeed/sso

  • vouch-proxy

    an SSO and OAuth / OIDC login solution for Nginx using the auth_request module

    Project mention: I'm looking for an SSO server/reverse proxy with features I'm not sure exist | /r/selfhosted | 2023-06-23
  • fosite

    Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.

    Project mention: Golang library for AuthN/AuthZ | /r/golang | 2023-06-06

    You can take a look to https://github.com/ory/fosite

  • authorizer

    Your data, your control. Fully open source, authentication and authorization. No lock-ins. Deployment in Railway in 120 seconds || Spin a docker image as a micro-service in your infra. Built in login page and Admin panel out of the box.

    Project mention: Authorizer, an open source authentication and authorization solution | news.ycombinator.com | 2023-09-12
  • docker_auth

    Authentication server for Docker Registry 2

  • firebase-admin-go

    Firebase Admin Go SDK

  • caddy-security

    🔐 Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. 💎 Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. 💎 Authorization with JWT/PASETO tokens. 🔐

    Project mention: Security flaws in an SSO plugin for Caddy | news.ycombinator.com | 2023-09-18

    > September 18, 2023: The disclosure blog post was released and issues were filed with the original project repository.

    I don't see those issues listed in the GitHub project issue tracker https://github.com/greenpau/caddy-security/issues. Have they been deleted?

  • gotrue

    A JWT based API for managing users and issuing JWT tokens (by supabase)

    Project mention: Supabase Local Dev: migrations, branching, and observability | news.ycombinator.com | 2023-08-09

    I hate to be this guy, really. I would like to adopt Supabase in company, but I cannot yet.

    I commented on a HN post almost a year ago about how hard is to do custom Auth with Supabase. I still haven't find a good solution about it. For example, LDAP Auth is quite crucial in most enterprise settings, yet I have no idea how to do it with Supabase. I can find a workaround for PostgREST by putting a secondary API written in some other language and fiddling with reverse proxies. But how to do with Supabase, such that all other services (realtime,...) works nicely? Is it so hard to provide a function that accept a custom strategy given the HTTP request data?

    I created an issue[0] almost a year ago on Supabase, which was transferred to Gotrue. I even provided some code examples from Laravel. Even if it is not specifically for LDAP, make some API available to do so, please.

    [0] https://github.com/supabase/gotrue/issues/904

  • auth

    Authenticator via oauth2, direct, email and telegram

    Project mention: How to build Auth in 2023 with go? | /r/golang | 2023-05-31
  • paseto

    Platform-Agnostic Security Tokens implementation in GO (Golang) (by o1egl)

  • go-keyring

    Cross-platform keyring interface for Go

    Project mention: Storing secrets in distributed binaries? | /r/golang | 2023-05-07

    If it is a personal application you can use the operating systems keyring. E.g. with https://github.com/zalando/go-keyring

  • go-guardian

    Go-Guardian is a golang library that provides a simple, clean, and idiomatic way to create powerful modern API and web authentication.

  • pinniped

    Pinniped is the easy, secure way to log in to your Kubernetes clusters.

    Project mention: infra alternatives - paralus and pinniped | libhunt.com/r/infra | 2023-04-07
  • mosquitto-go-auth

    Auth plugin for mosquitto.

    Project mention: Securing MQTT: A Guide to Basic Authentication | dev.to | 2023-10-02

    Check auth plugin for more complex use cases.

  • dex-k8s-authenticator

    A Kubernetes Dex Client Authenticator

  • InfluxDB

    Collect and Analyze Billions of Data Points in Real Time. Manage all types of time series data in a single, purpose-built database. Run at any scale in any environment in the cloud, on-premises, or at the edge.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2023-10-02.

Go Authentication related posts


What are some of the best open-source Authentication projects in Go? This list will help you:

Project Stars
1 pocketbase 26,136
2 authelia 17,467
3 casdoor 7,078
4 go-grpc-middleware 5,696
5 zitadel 4,695
6 authentik 4,657
7 gotrue 3,561
8 Ory Oathkeeper 3,042
9 S.S.Octopus 3,035
10 vouch-proxy 2,438
11 fosite 2,148
12 authorizer 1,214
13 docker_auth 1,182
14 firebase-admin-go 1,008
15 caddy-security 957
16 gotrue 831
17 auth 804
18 paseto 755
19 go-keyring 664
20 go-guardian 489
21 pinniped 471
22 mosquitto-go-auth 433
23 dex-k8s-authenticator 355
Learn any GitHub repo in 59 seconds
Onboard AI learns any GitHub repo in minutes and lets you chat with it to locate functionality, understand different parts, and generate new code. Use it for free at www.getonboard.dev.