SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 OAuth Open-Source Projects
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
-
Ory Hydra
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
-
django-allauth
Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
Self-Hosting-Guide
Self-Hosting Guide. Learn all about locally hosting (on premises & private web servers) and managing software applications by yourself or your organization. Including Cloud, LLMs, WireGuard, Automation, Home Assistant, and Networking.
-
C++ REST SDK
The C++ REST SDK is a Microsoft project for cloud-based client-server communication in native code using a modern asynchronous C++ API design. This project aims to help C++ developers connect to and interact with services.
-
logto
🧑🚀 The better identity infrastructure for developers and the open-source alternative to Auth0.
-
authlib
The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.
-
Devise Token Auth
Token based authentication for Rails JSON APIs. Designed to work with jToker and ng-token-auth.
-
cli
🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc. (by smallstep)
-
PRAW
PRAW, an acronym for "Python Reddit API Wrapper", is a python package that allows for simple access to Reddit's API.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Next, use something like https://www.npmjs.com/package/passport, this is authentication middleware, and it works similarly for different authentication providers. Carefully read the documentation. OAuth is complicated, but that's because it solves a complicated problem
Project mention: Deploy Full-Stack Next.js T3App with Cognito and Prisma using AWS Lambda | dev.to | 2024-04-15NextAuth.js is not perfect. One of the shortcomings is that it currently does not implement federated logout. This means that even if a user signs out of the Next.js app, he does NOT get signed out of the Cognito user pool client. As a consequence, the user is not really being logged out (i.e he is able to login again without providing the credentials). You can read more about this problem in this Github thread.
https://casbin.org/ (multiple approaches, multiple languages, provider) Open source authZ library that has support for many access control models (ACL, RBAC, ABAC, …) and many languages (Go, Java, Node.js, JS, Rust, …). While somewhat complex, it is also powerful and flexible. They also have their Casdoor platform, which is authN and authZ provider.
Project mention: Building a Managed Service Provider Business With Open Source | dev.to | 2024-04-04Tailscale
Project mention: Show HN: Open-source OAuth2 server Ory Hydra now 6x faster | news.ycombinator.com | 2024-02-13
Checkout https://supertokens.com/ - open source alternative to Auth0. It has a lot of free features and if you self host it, it's free at any scale. For our managed service, it's still far cheaper compared to Auth0.
If you don't want to use Pegasus or another paid product (presumably because of the cost), the packages I'd reach for are django-allauth for login/user stuff and dj-stripe for the Stripe integration. As for teams, there wasn't a library I was happy with so I rolled my own for Pegasus, but some people like django-tenants. It's too heavyweight for my taste as it requires a more complex dev/test/infrastructure setup with Postgres schemas, as opposed to having a single-database and handling multitenancy in the application layer. But there are pros and cons to both approaches.
Project mention: What is the industry standard today in C++ to deploy REST microservices in Kubernetes? | /r/cpp | 2023-09-06My favourite was Microsoft's cpprestsdk, but for some reason now is in maintenance mode, I don't know why, so it's hard to suggest it for new projects. A nice alternative is restc-cpp, that's has a good high-level interface, if this is what you want.
Link: https://lucia-auth.com/
Going deeper than just blade files, Laravel is a full MVC framework and so includes things like Models and Controllers out of the box that can be used to organize your server-rendered code. Authentication is also baked in by default, and with first-party packages like Breeze, Sanctum, or Socialite, you can include user registration, login, API-based authentication, social sign-ups, and role-based permissions with near zero configuration.
Project mention: 🚀 Top 12 Open Source Auth Projects Every Developer Should Know 🔑 | dev.to | 2023-12-06Hanko.io
Project mention: Show HN: Nango – Open unified API for product integrations | news.ycombinator.com | 2023-11-09Back in August I queried [1] your usage of "open source" while not being an open source project (ELv2 licensed). It looks like you're no longer describing yourself as "100% Open Source" which is good but you still label yourself as open source in the repo readme and still refer to yourself as open source on the website. Do you intend to keep labelling yourself as open source or is that something you're moving away from?
Project mention: Best social login library for PHP ("sign in with Apple/Google/Facebook" etc.)? | /r/PHPhelp | 2023-05-21League/oauth2-client has a lot of implementations
Project mention: Google will disable all but OAuth for IMAP, SMTP and POP starting Sept. 30 | news.ycombinator.com | 2024-01-18https://github.com/smallstep/cli implements some OAuth flows from the CLI, it may be helpful for you.
OAuth related posts
- How to update Go version of tailscaled on macOS
- Show HN: Handshake – Next.js OAuth handler for 200 APIs
- Show HN: Open-source OAuth2 server Ory Hydra now 6x faster
- Streamlining Role-Based Access Control in Next.js with Descope and Auth.js: A Step-by-Step Guide
- 🛡️4 Top Database Security Tools in 2024 🏆🔥
- Nextauth.js: Use <SessionProvider /> in Next.js "app" directory
- Lucia: Auth library in TypeScript to manage the complexity of handling sessions
-
A note from our sponsor - SaaSHub
www.saashub.com | 19 Apr 2024
Index
What are some of the best open-source OAuth projects? This list will help you:
Project | Stars | |
---|---|---|
1 | Passport | 22,397 |
2 | next-auth | 22,041 |
3 | casbin | 16,818 |
4 | tailscale | 16,315 |
5 | Ory Hydra | 15,043 |
6 | SuperTokens Community | 11,872 |
7 | django-allauth | 8,860 |
8 | Self-Hosting-Guide | 8,506 |
9 | C++ REST SDK | 7,800 |
10 | lucia | 7,439 |
11 | logto | 7,184 |
12 | PHP OAuth 2.0 Server | 6,452 |
13 | socialite | 5,473 |
14 | scribejava | 5,423 |
15 | hanko | 5,396 |
16 | Doorkeeper | 5,255 |
17 | authlib | 4,254 |
18 | nango | 4,036 |
19 | Grant | 4,025 |
20 | OAuth 2.0 Client | 3,600 |
21 | Devise Token Auth | 3,505 |
22 | cli | 3,468 |
23 | PRAW | 3,312 |