Top 23 OAuth Open-Source Projects

• Passport

  63 22,397 5.1 JavaScript

  Simple, unobtrusive authentication for Node.js.

Project mention: Non-technical person looking for your help | /r/webdev | 2023-06-24

Next, use something like https://www.npmjs.com/package/passport, this is authentication middleware, and it works similarly for different authentication providers. Carefully read the documentation. OAuth is complicated, but that's because it solves a complicated problem

• next-auth

  203 22,041 9.8 TypeScript

  Authentication for the Web.

  

Project mention: Deploy Full-Stack Next.js T3App with Cognito and Prisma using AWS Lambda | dev.to | 2024-04-15

NextAuth.js is not perfect. One of the shortcomings is that it currently does not implement federated logout. This means that even if a user signs out of the Next.js app, he does NOT get signed out of the Cognito user pool client. As a consequence, the user is not really being logged out (i.e he is able to login again without providing the credentials). You can read more about this problem in this Github thread.

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• casbin

  38 16,818 7.3 Go

  An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN

  

Project mention: A guide to Auth & Access Control in web apps 🔐 | dev.to | 2023-11-07

https://casbin.org/ (multiple approaches, multiple languages, provider) Open source authZ library that has support for many access control models (ACL, RBAC, ABAC, …) and many languages (Go, Java, Node.js, JS, Rust, …). While somewhat complex, it is also powerful and flexible. They also have their Casdoor platform, which is authN and authZ provider.

• tailscale

  1,005 16,315 9.9 Go

  The easiest, most secure way to use WireGuard and 2FA.

  

Project mention: Building a Managed Service Provider Business With Open Source | dev.to | 2024-04-04

Tailscale

• Ory Hydra

  37 15,043 9.1 Go

  OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.

  

Project mention: Show HN: Open-source OAuth2 server Ory Hydra now 6x faster | news.ycombinator.com | 2024-02-13

• SuperTokens Community

  113 11,872 9.4 Java

  Open source alternative to Auth0 / Firebase Auth / AWS Cognito

  

Project mention: Auth0 increases price by 300% | /r/webdev | 2023-12-07

Checkout https://supertokens.com/ - open source alternative to Auth0. It has a lot of free features and if you self host it, it's free at any scale. For our managed service, it's still far cheaper compared to Auth0.

• django-allauth

  44 8,860 9.7 Python

  Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication.

Project mention: Django SaaS Package | /r/django | 2023-06-25

If you don't want to use Pegasus or another paid product (presumably because of the cost), the packages I'd reach for are django-allauth for login/user stuff and dj-stripe for the Stripe integration. As for teams, there wasn't a library I was happy with so I rolled my own for Pegasus, but some people like django-tenants. It's too heavyweight for my taste as it requires a more complex dev/test/infrastructure setup with Postgres schemas, as opposed to having a single-database and handling multitenancy in the application layer. But there are pros and cons to both approaches.

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• Self-Hosting-Guide

  18 8,506 8.3 Dockerfile

  Self-Hosting Guide. Learn all about locally hosting (on premises & private web servers) and managing software applications by yourself or your organization. Including Cloud, LLMs, WireGuard, Automation, Home Assistant, and Networking.

Project mention: Self-Hosted Is Awesome | news.ycombinator.com | 2024-04-13

• C++ REST SDK

  13 7,800 3.6 C++

  The C++ REST SDK is a Microsoft project for cloud-based client-server communication in native code using a modern asynchronous C++ API design. This project aims to help C++ developers connect to and interact with services.

  

Project mention: What is the industry standard today in C++ to deploy REST microservices in Kubernetes? | /r/cpp | 2023-09-06

My favourite was Microsoft's cpprestsdk, but for some reason now is in maintenance mode, I don't know why, so it's hard to suggest it for new projects. A nice alternative is restc-cpp, that's has a good high-level interface, if this is what you want.

• lucia

  51 7,439 9.7 TypeScript

  Authentication, simple and clean

  

Project mention: Best Next.js Libraries and Tools in 2024 | dev.to | 2024-04-10

Link: https://lucia-auth.com/

• logto

  99 7,184 9.9 TypeScript

  🧑‍🚀 The better identity infrastructure for developers and the open-source alternative to Auth0.

  

Project mention: Logto v1.12.0 - Organizations, SSO, and MFA | /r/selfhosted | 2023-12-06

• PHP OAuth 2.0 Server

  10 6,452 8.9 PHP

  A spec compliant, secure by default PHP OAuth 2.0 Server

  

• socialite

  5 5,473 7.2 PHP

  Laravel wrapper around OAuth 1 & OAuth 2 libraries.

  

Project mention: Making the case for Laravel as a Next.js alternative | dev.to | 2023-08-18

Going deeper than just blade files, Laravel is a full MVC framework and so includes things like Models and Controllers out of the box that can be used to organize your server-rendered code. Authentication is also baked in by default, and with first-party packages like Breeze, Sanctum, or Socialite, you can include user registration, login, API-based authentication, social sign-ups, and role-based permissions with near zero configuration.

• scribejava

  1 5,423 2.6 Java

  Simple OAuth library for Java

  

• hanko

  10 5,396 9.6 Go

  Customer Identity and Access Management for the passkey era

  

Project mention: 🚀 Top 12 Open Source Auth Projects Every Developer Should Know 🔑 | dev.to | 2023-12-06

Hanko.io

• Doorkeeper

  6 5,255 7.5 Ruby

  Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape.

  

• authlib

  3 4,254 7.3 Python

  The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.

• nango

  31 4,036 9.8 TypeScript

  A single API for all your integrations.

  

Project mention: Show HN: Nango – Open unified API for product integrations | news.ycombinator.com | 2023-11-09

Back in August I queried [1] your usage of "open source" while not being an open source project (ELv2 licensed). It looks like you're no longer describing yourself as "100% Open Source" which is good but you still label yourself as open source in the repo readme and still refer to yourself as open source on the website. Do you intend to keep labelling yourself as open source or is that something you're moving away from?

[1] https://github.com/NangoHQ/nango/issues/900

• Grant

  5 4,025 5.7 JavaScript

  OAuth Proxy

Project mention: Most stable and easy to implement Auth with SvelteKit? | /r/sveltejs | 2023-12-05

• OAuth 2.0 Client

  9 3,600 4.4 PHP

  Easy integration with OAuth 2.0 service providers.

  

Project mention: Best social login library for PHP ("sign in with Apple/Google/Facebook" etc.)? | /r/PHPhelp | 2023-05-21

League/oauth2-client has a lot of implementations

• Devise Token Auth

  7 3,505 6.0 Ruby

  Token based authentication for Rails JSON APIs. Designed to work with jToker and ng-token-auth.

• cli

  8 3,468 9.2 Go

  🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc. (by smallstep)

  

Project mention: Google will disable all but OAuth for IMAP, SMTP and POP starting Sept. 30 | news.ycombinator.com | 2024-01-18

https://github.com/smallstep/cli implements some OAuth flows from the CLI, it may be helpful for you.

• PRAW

  528 3,312 7.8 Python

  PRAW, an acronym for "Python Reddit API Wrapper", is a python package that allows for simple access to Reddit's API.

  

Project mention: PRAW documentation | /r/test | 2023-11-01

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

OAuth related posts

• How to update Go version of tailscaled on macOS
  1 project | dev.to | 22 Mar 2024
• Show HN: Handshake – Next.js OAuth handler for 200 APIs
  1 project | news.ycombinator.com | 29 Feb 2024
• Show HN: Open-source OAuth2 server Ory Hydra now 6x faster
  1 project | news.ycombinator.com | 13 Feb 2024
• Streamlining Role-Based Access Control in Next.js with Descope and Auth.js: A Step-by-Step Guide
  2 projects | dev.to | 3 Feb 2024
• 🛡️4 Top Database Security Tools in 2024 🏆🔥
  4 projects | dev.to | 1 Feb 2024
• Nextauth.js: Use <SessionProvider /> in Next.js "app" directory
  2 projects | news.ycombinator.com | 28 Jan 2024
• Lucia: Auth library in TypeScript to manage the complexity of handling sessions
  1 project | news.ycombinator.com | 27 Jan 2024
• A note from our sponsor - SaaSHub
  www.saashub.com | 19 Apr 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com