The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 23 Authorization Open-Source Projects
-
casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
https://casbin.org/ (multiple approaches, multiple languages, provider) Open source authZ library that has support for many access control models (ACL, RBAC, ABAC, …) and many languages (Go, Java, Node.js, JS, Rust, …). While somewhat complex, it is also powerful and flexible. They also have their Casdoor platform, which is authN and authZ provider.
-
Ory Hydra
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
Project mention: Show HN: Open-source OAuth2 server Ory Hydra now 6x faster | news.ycombinator.com | 2024-02-13 -
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
How can we handle this? Are there any mechanisms to prevent or at least to some extent safeguard this kind of issues without falling back to a manual workflow? There is. One huge advantage of sticking to (de-facto) standards like Terraform is that first we are probably not the first ones to come up with this question and second there is a huge ecosystem around Terraform that might help us with such challenges. And for this specific scenario the solution is the Open Policy Agent. Let us take a closer look how the solution could look like.
-
https://github.com/varvet/pundit Popular open-source Ruby library focused around the notion of policies, giving you the freedom to implement your own approach based on that.
-
logto
🧑🚀 The better identity infrastructure for developers and the open-source alternative to Auth0.
-
Project mention: Maintainers of Zitadel and Ory discuss their tradeoffs as identity platforms | news.ycombinator.com | 2024-03-30
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
-
CASL
CASL is an isomorphic authorization JavaScript library which restricts what resources a given user is allowed to access
Project mention: CASL – Isomorphic authorization JavaScript library | news.ycombinator.com | 2024-01-24 -
https://github.com/CanCanCommunity/cancancan (Ruby on Rails ABAC) Same like casl.js, but for Ruby on Rails! Casl.js was actually inspired and modeled by cancancan.
-
The doorkeeper gem.
-
Ockam
Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.
disclosure: I work at Ockam.
The Portals for Mac app is an example of the type of thing you could build using the open source stack of protocols. The README (linked by parent) links out to all of the relevant parts of the protocol documentation to explain how these work together. The NAT Traversal (https://github.com/build-trust/ockam/blob/develop/examples/a...) part of the README is probably the best explanation of why the free relay you get via Ockam Orchestrator is a useful part of this demo.
As for why would anyone trust this: The protocols are designed so you absolutely don't have to trust the relay. Trust is pushed out to the edges that you control and so you're not susceptible to a MITM attack if something like a relay is compromised. The protocol design for all of this is open and documented, and was independently audited by (IMO) some of the best in the business, Trail of Bits: https://docs.ockam.io/reference/protocols.
-
-
-
-
Project mention: Best social login library for PHP ("sign in with Apple/Google/Facebook" etc.)? | /r/PHPhelp | 2023-05-21
League/oauth2-client has a lot of implementations
-
-
Link to GitHub -->
-
Ory Oathkeeper
A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming HTTP(s) requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.
-
I think I'm set with Rolify for the user roles
-
-
cerbos
Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.
-
node-casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Node.js and Browser
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
The latest post mention was on 2024-04-03.
Authorization related posts
- Show HN: AI assistant powered by Groq to generate authorization models
- Maintainers of Zitadel and Ory discuss their tradeoffs as identity platforms
- Caddy-Security: Security App and Plugin for Caddy
- Open Policy Agent
- Show HN: Auth0 OSS alternative Ory Kratos now with passwordless and SMS support
- Show HN: Open-source OAuth2 server Ory Hydra now 6x faster
- Security flaws in an SSO plugin for Caddy
-
A note from our sponsor - WorkOS
workos.com | 16 Apr 2024
Index
What are some of the best open-source Authorization projects? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | casbin | 16,791 |
| 2 | Ory Hydra | 15,018 |
| 3 | cas | 10,617 |
| 4 | OPA (Open Policy Agent) | 9,104 |
| 5 | Pundit | 8,158 |
| 6 | logto | 7,184 |
| 7 | zitadel | 6,906 |
| 8 | authentik | 6,591 |
| 9 | CASL | 5,552 |
| 10 | CanCanCan | 5,501 |
| 11 | Doorkeeper | 5,255 |
| 12 | Ockam | 4,341 |
| 13 | santa | 4,298 |
| 14 | Grant | 4,021 |
| 15 | react-native-permissions | 3,898 |
| 16 | OAuth 2.0 Client | 3,595 |
| 17 | bouncer | 3,377 |
| 18 | oso | 3,372 |
| 19 | Ory Oathkeeper | 3,158 |
| 20 | rolify | 3,137 |
| 21 | OAuthLib | 2,736 |
| 22 | cerbos | 2,476 |
| 23 | node-casbin | 2,466 |
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com