The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 22 Go Oidc Projects
-
casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
-
Ory Hydra
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
pgrok
Poor man's ngrok - a multi-tenant HTTP/TCP reverse tunnel solution through SSH remote port forwarding (by pgrok)
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
oidc
Easy to use OpenID Connect client and server library written for Go and certified by the OpenID Foundation
-
pam-keycloak-oidc
PAM module connecting to Keycloak for user authentication using OpenID Connect/OAuth2, with MFA/2FA/TOTP support
-
kc-ssh-pam
KC SSH PAM is built to streamline the process of user authentication to access Linux systems through SSH with keycloak oidc
-
keycloak-ext-operator
Creates OAuth clients in Keycloak and creates corresponding secrets in kubernetes
-
aad-oidc-identity
This proof of concept aims to showcase the new federated identity credentials in Azure AD working together with Service Account Token Volume Projection and Service Account Issuer Discovery in Kubernetes.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
https://casbin.org/ (multiple approaches, multiple languages, provider) Open source authZ library that has support for many access control models (ACL, RBAC, ABAC, …) and many languages (Go, Java, Node.js, JS, Rust, …). While somewhat complex, it is also powerful and flexible. They also have their Casdoor platform, which is authN and authZ provider.
Project mention: Show HN: Open-source OAuth2 server Ory Hydra now 6x faster | news.ycombinator.com | 2024-02-13
Project mention: Navigating Identity Authentication: From LDAP to Modern Protocols | dev.to | 2024-03-28Dex: https://dexidp.io
Project mention: Maintainers of Zitadel and Ory discuss their tradeoffs as identity platforms | news.ycombinator.com | 2024-03-30
Project mention: Show HN: Stack, the open-source Clerk/Firebase Auth alternative | news.ycombinator.com | 2024-04-14If you're looking for a system that has more features, is user friendly, a nice admin ui and easy deployments compared to Keycloak. Please give https://goauthentik.io/ a shot. Not affiliated in any way, just a very happy user.
It has
-an admin UI
- Supports (LDAP, SAML, OAUTH, social logins)
- MFA, Passkeys
- Application access based on user groups etc
I made a custom OIDC provider for integ tests using https://github.com/lestrrat-go/jwx, and a server than served out a .well-known/openid-configuration file and a jwks.json referenced by the openid-configuration.
Authenticating with Kyma is a (in my opinion) unnecessary challenge as it leverages the OIDC-login plugin for kubectl. You find a description of the setup here. This works fine when on a Mac but can give you some headaches on a Windows and on Linux machine especially when combined with restrictive setups in corporate environments. For Windows I can only recommend installing krew via chocolatey and then install the OIDC plugin via kubectl krew install oidc-login. At least for me that was the only way to get this working on Windows.
Project mention: Recommendations for a better way to grant access in K8s on a granular level? | /r/kubernetes | 2023-09-05Check out https://infrahq.com. I saw the founder give a talk at the Civo conference in Feb.
Project mention: Easy to use OpenID Connect client and server library written for Go | /r/hackernews | 2023-12-04
The deployment experience is awesome, but for me[0] the killer feature of Fly.io is their Anycast network and features such as FLY_REPLAY and LiteFS that make clusering a breeze[1].
[0]: using them for https://lastlogin.io
[1]: Here's all the fly-specific code necessary to run LastLogin in a globally distributed way: https://github.com/lastlogin-io/obligator/blob/37f75cc861f1b...
For oidic there's at least:
https://github.com/salesforce/pam_oidc
https://github.com/EOSC-synergy/ssh-oidc
Project mention: Easy to use OpenID Connect client and server library written for Go | news.ycombinator.com | 2023-12-01Nice. Once upon a time we created something like this. https://github.com/reddec/oidc-login (Client only)
Project mention: Show HN: Add OAuth to your API with a single callback | news.ycombinator.com | 2023-05-08
Go Oidc related posts
- Maintainers of Zitadel and Ory discuss their tradeoffs as identity platforms
- Keycloak SSO with Docker Compose and Nginx
- Ask HN: Technical Challenges in Building Multi-Tenant SaaS Products
- B2B identity infrastructure written in Go
- Google OAuth is broken (sort of)
- Sign in with GitHub in Go
- Easy to use OpenID Connect client and server library written for Go
-
A note from our sponsor - WorkOS
workos.com | 24 Apr 2024
Index
What are some of the best open-source Oidc projects in Go? This list will help you:
Project | Stars | |
---|---|---|
1 | casbin | 16,818 |
2 | Ory Hydra | 15,043 |
3 | dex | 9,002 |
4 | zitadel | 6,982 |
5 | authentik | 6,685 |
6 | pgrok | 3,049 |
7 | jwx | 1,786 |
8 | kubelogin | 1,511 |
9 | infra | 1,350 |
10 | oidc | 1,176 |
11 | obligator | 609 |
12 | pinniped | 506 |
13 | dexter | 164 |
14 | go-oidc-middleware | 90 |
15 | aws-runas | 86 |
16 | pam-keycloak-oidc | 57 |
17 | kc-ssh-pam | 52 |
18 | pam_oidc | 47 |
19 | oidc-login | 31 |
20 | keycloak-ext-operator | 22 |
21 | connectivly | 6 |
22 | aad-oidc-identity | 3 |
Sponsored