Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression. Learn more →
Ory Kratos Alternatives
Similar projects and alternatives to Ory Kratos
-
Ory Keto
Open Source (Go) implementation of "Zanzibar: Google's Consistent, Global Authorization System". Ships gRPC, REST APIs, newSQL, and an easy and granular permission language. Supports ACL, RBAC, and other access models.
-
Keycloak
Open Source Identity and Access Management For Modern Applications and Services
-
InfluxDB
Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.
-
Ory Hydra
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
-
SuperTokens Community
Open source alternative to Auth0 / Firebase Auth / AWS Cognito
-
Vault
A tool for secrets management, encryption as a service, and privileged access management
-
zitadel
ZITADEL - The best of Auth0 and Keycloak combined. Built for the serverless era.
-
-
ONLYOFFICE
ONLYOFFICE Docs — document collaboration in your environment. Powerful document editing and collaboration in your app or environment. Ultimate security, API and 30+ ready connectors, SaaS or on-premises
-
-
OPA (Open Policy Agent)
An open source, general-purpose policy engine.
-
-
-
-
casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang
-
-
-
IdentityServer
The most flexible and standards-compliant OpenID Connect and OAuth 2.x framework for ASP.NET Core
-
auth0-spa-js
Auth0 authentication for Single Page Applications (SPA) with PKCE
-
gomodest
A complex SAAS starter kit using Go, the html/template package, and sprinkles of javascript.
-
-
-
CodiumAI
TestGPT | Generating meaningful tests for busy devs. Get non-trivial tests (and trivial, too!) suggested right inside your IDE, so you can code smart, create more value, and stay confident when you push.
Ory Kratos reviews and mentions
-
Show HN: Open-source Auth0 alternative Ory Kratos v0.13 released – nearing v1.0
Check out the milestone on github: https://github.com/ory/kratos/milestone/15
not sure if that is everything.
-
State of OpenID Connect Providers
An open source solution pre-built from professionals like Ory Kratos or Keycloak saves you a lot of time and pain.
-
Tell HN: Stytch Login SaaS Unicorn has common auth vulnerabilities
One might say you wouldn't be surprised. Security practices at start ups have never been good (no regulation, focus on sales) but to see this lack of security awareness in a company protecting PII is shocking. But what do VCs know ...
As always when something like this happens, here are some good open source alternatives with appropriate security policies and bug bounties in place:
* https://github.com/keycloak/keycloak
* https://github.com/ory/kratos
* https://github.com/GluuFederation (potentially dated for some use cases)
- Something like Keycloak but in Go?
-
what should I do about authentication in golang?
Kratos is the full solution, if you're interested in that.
-
Hacker News top posts: Jun 9, 2022
Show HN: Open-Source Identity Server Written in Go\ (19 comments)
-
Show HN: Open-Source Identity Server Written in Go (Ory Kratos)
Congratulations on Kratos coming out of Beta.
We evaluated Ory a few months ago. My understanding:
1. Ory Kratos provides session-based authentication and user management.
2. Ory Hydra is a self-managed server that secures access to your applications and APIs with OAuth 2.0 and OpenID Connect.
Basically we want to replace AWS Cognito (which is pretty much abandonware) to secure our API so we needed both applications. Unfortunately we had to put our efforts on hold:
1. Bugs around traits meant we had issues around password change, password recovery and email change/reverifications for our use-case
2. Lack of documentation prevented us making progress on 2FA/WebAuthn
3. Bearer token/Oauth consent flow wasn't available without a lot of work because Kratos and Hydra are not "integrated" [1]. Someone shows how they rolled their own integration [2].
I'd love for someone to advise that we were wrong or misunderstood things or that things have moved on since then!
Yes! OVH (the cloud provider) is working on a large PR: https://github.com/ory/kratos/pull/2148
-
A note from our sponsor - InfluxDB
www.influxdata.com | 30 May 2023
Stats
ory/kratos is an open source project licensed under Apache License 2.0 which is an OSI approved license.
The primary programming language of Ory Kratos is Go.