Top 23 Authentication Open-Source Projects
Flexible authentication solution for Rails with Warden.Project mention: Ruby through the lens of Go | dev.to | 2021-04-16
One of the things I love the most about Ruby is that it tends to coalesce around one or two really popular libraries. Rails is the big one obviously, but over time you see libraries designed for a particular purpose "winning" over other things. This includes things like linting/code analysis (Rubocop), authentication (Devise), testing (RSpec and Minitest) and more. The emphasis is on making something good great rather than making a lot of different good things.
Simple, unobtrusive authentication for Node.js.Project mention: express-session + passport: serialize/deserialize configuration? | reddit.com/r/node | 2021-04-03
According to https://github.com/jaredhanson/passport/pull/160
Scout APM - Leading-edge performance monitoring starting at $39/month. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
🔐 JSON Web Token Authentication for Laravel & Lumen (by tymondesigns)Project mention: Most Useful GitHub repositories for Laravel | dev.to | 2021-01-21
jwt-auth provides a simple means of authentication within Laravel using JSON Web Tokens. JSON Web Token (JWT) is a compact, URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is used as the payload of a JSON Web Signature (JWS) structure or as the plaintext of a JSON Web Encryption (JWE) structure, enabling the claims to be digitally signed or integrity protected with a Message Authentication Code (MAC) and/or encrypted.
OmniAuth is a flexible authentication system utilizing Rack middleware.Project mention: Unsolicited Advice After My First Rails Project | dev.to | 2021-03-25
For example, I wanted my users to be able to log in through Google, but I was having trouble getting Omniauth to work properly. Maybe it was interacting weirdly with some other part of my code and having a more simplified set up that looks the same would make it easier to spot the bad interaction, or maybe I just needed to start fresh because I missed something in the setup. Either way, perfect candidate for the sandbox! But even when I got it figured out there, I still couldn't get it to transfer over to my real project...
deepstream.io serverProject mention: Which self hosted Pub/Sub realtime technology (websockets etc) do you use and why? | reddit.com/r/node | 2021-04-01
I can find socket.io, faye, deepstream.io , autobahn-js and nchan, centrifugo. Can you also explain why you chose it and if you had troubles with some other solution?
Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication.Project mention: Registration system allowing logged-in users to access Wagtail Admin | reddit.com/r/WagtailCMS | 2021-04-10
I've been looking for a Python package, such as django-allauth, but this doesn't seem to allow registered users access to the Wagtail admin portal.
The Single Sign-On Multi-Factor portal for web appsProject mention: Single Sign-On Solutions? | reddit.com/r/selfhosted | 2021-04-19
Surprised no one has suggested Authelia, it’s pretty successful at balancing simple to use vs powerful. And supports LDAP. I’m pretty happy with it
Authentication for Next.jsProject mention: Next.js and NextAuth.js | dev.to | 2021-04-16
Learn more at next-auth.js.org
Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape.Project mention: Authelia is an open-source authentication/authorization server with 2FA/SSO | news.ycombinator.com | 2021-03-10
One thing that is missing from this list is open source language specific libraries. Projects such as https://oauthlib.readthedocs.io/en/latest/oauth2/server.html and https://github.com/doorkeeper-gem/doorkeeper
Depending on your use case, for example if you only have one application, you might be better off running something embedded in your app, or independent but using the same runtime/deployment environment. Then, when you are ready to add another app or integration, you should be able to introduce a standalone auth system more easily if appropriate (because all your auth interactions should be relatively standardized). I'm a big fan of standalone auth systems as a way to simplify access control and give a single view of a user/customer, but you can also succeed using open source embedded libraries.
When the moment comes to introduce a standalone system, you should consider a few dimensions (this list pulled from a previous comment of mine: https://news.ycombinator.com/item?id=26360048 ):
* open source or not
JSON Web Token implementation in Python
node.js auth package (password, facebook, & more) for Connect and Express apps
Golang gRPC Middlewares: interceptor chaining, auth, logging, retries and more.Project mention: gRPC best practices | reddit.com/r/golang | 2021-04-21
Example auth middleware: https://github.com/grpc-ecosystem/go-grpc-middleware/blob/master/auth/examples_test.go
Simple and rapid application development framework, built on top of Flask. includes detailed security, auto CRUD generation for your models, google charts and much more. Demo (login with guest/welcome) - http://flaskappbuilder.pythonanywhere.com/Project mention: Splitting flask app into multiple files | reddit.com/r/flask | 2021-03-12
You can also try FlaskAppbuilder: https://github.com/dpgaspar/Flask-AppBuilder. Some of the large project like Apache Airflow, Apache Superset are built on top of it.
Token based authentication for Rails JSON APIs. Designed to work with jToker and ng-token-auth.Project mention: Devise, The Swiss Army Knife of Rails User Authentication. | dev.to | 2021-02-04
As a side note, also check out devise_token_auth here
A fully tested, abstract interface to creating OAuth clients and servers.
List of sites with two factor auth support which includes SMS, email, phone calls, hardware, and software.Project mention: All your SMS are belong to us | reddit.com/r/msp | 2021-03-16
Using the 2fa.directory as a start, I recently went searching for banks that specifically support MFA via hardware or software tokens. Almost all are non-US based which shows how far behind the US financial industry is w/r MFA. I found one, First Tech Federal Credit Union, which supports software tokens using the Entrust IdentityGuard app. They support business and personal accounts and you can apply online.
Firebase iOS SDKProject mention: Hacking 3,000,000 apps at once through CocoaPods | reddit.com/r/swift | 2021-04-21
sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services
A simple Flask boilerplate app with SQLAlchemy, Redis, User Authentication, and more.Project mention: Any good example projects that I can use to compare my own flask site? | reddit.com/r/flask | 2021-02-22
I came across (flask-base)[https://github.com/hack4impact/flask-base], which is a nice and robust boilerplate for large flask apps, you could use this as a reference point.
The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.
What are some of the best open-source Authentication projects? This list will help you:
|15||Devise Token Auth||3,135|