Authelia is an open-source authentication/authorization server with 2FA/SSO

1. authelia

   1 175 23,503 9.9 Go

   The Single Sign-On Multi-Factor portal for web apps

   

2. InfluxDB

   influxdata.com featured

   InfluxDB high-performance time series database. Collect, organize, and act on massive volumes of high-resolution data to power real-time intelligent systems.

   

3. Keycloak

   2 264 26,782 10.0 Java

   Open Source Identity and Access Management For Modern Applications and Services

   

   Looks like Keycloak's certificate is only valid with `www.`: https://www.keycloak.org/

   > - Keycloak (you won't get fired for picking this)[0]

   Curious what you mean with "you won't get fired for picking this". Do you mean that it's good and easy to run, or something else?

4. Doorkeeper

   3 7 5,381 7.9 Ruby

   Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape.

   

   One thing that is missing from this list is open source language specific libraries. Projects such as https://oauthlib.readthedocs.io/en/latest/oauth2/server.html and https://github.com/doorkeeper-gem/doorkeeper

   Depending on your use case, for example if you only have one application, you might be better off running something embedded in your app, or independent but using the same runtime/deployment environment. Then, when you are ready to add another app or integration, you should be able to introduce a standalone auth system more easily if appropriate (because all your auth interactions should be relatively standardized). I'm a big fan of standalone auth systems as a way to simplify access control and give a single view of a user/customer, but you can also succeed using open source embedded libraries.

   When the moment comes to introduce a standalone system, you should consider a few dimensions (this list pulled from a previous comment of mine: https://news.ycombinator.com/item?id=26360048 ):

      * open source or not

5. fusionauth-issues

   4 26 94 4.1

   FusionAuth issue submission project

   

   These dimensions all matter to varying degrees depending on your team and needs.

   Disclosure: I work for https://fusionauth.io/ which has open source supporting libraries and docs, but which is itself not open source.

6. glewlwyd

   5 2 429 8.7 C

   Discontinued Experimental Single Sign On server, OAuth2, Openid Connect, multiple factor authentication with, HOTP/TOTP, FIDO2, TLS Certificates, etc. extensible via plugins

   I tried several of these recently and I ended up with glewlwyd:

   https://github.com/babelouest/glewlwyd

7. oauth2-proxy

   6 103 10,983 9.1 Go

   A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.

   

   oauth2_proxy is a great tool that lets you create a transparent OAuth proxy to provide SSO for any internal service. https://github.com/oauth2-proxy/oauth2-proxy

   There's also S.S.Octopus, and Pomerium. https://github.com/buzzfeed/sso https://github.com/pomerium/pomerium

   They all have different OAuth providers, so check them each out to see which one works with your identity provider.

8. KrakenD

   7 4 6,522 7.1 Go

   Ultra performant API Gateway with middlewares. A project hosted at The Linux Foundation

   

   Thanks for the pointer to Express API Gateway.

   A took a look at Krakend a while back, and it didn't seem to support it either [1]

   [1] https://github.com/devopsfaith/krakend/issues/274

9. CodeRabbit

   coderabbit.ai featured

   CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.

   

Suggest a related project