Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 23 Mfa Open-Source Projects
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
cli
🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc. (by smallstep)
-
speakeasy
**NOT MAINTAINED** Two-factor authentication for Node.js. One-time passcode generator (HOTP/TOTP) with support for Google Authenticator.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
prince
:crown: Multivariate exploratory data analysis in Python — PCA, CA, MCA, MFA, FAMD, GPA (by MaxHalford)
-
GlobalProtect-openconnect
A GlobalProtect VPN client for Linux, written in Rust, based on OpenConnect and Tauri, supports SSO with MFA, Yubikey, etc.
-
extract_otp_secrets
Extract one time password (OTP) secrets from QR codes exported by two-factor authentication (2FA) apps such as "Google Authenticator". The exported QR codes from authentication apps can be captured by camera, read from images, or read from text files. The secrets can be exported to JSON or CSV, or printed as QR codes to console.
-
product-is
Welcome to the WSO2 Identity Server source code! For info on working with the WSO2 Identity Server repository and contributing code, click the link below.
-
bastion
🔒Secure Bastion implemented as Docker Container running Alpine Linux with Google Authenticator & DUO MFA support (by cloudposse)
-
django-mfa2
A Django app that handles MFA, it supports TOTP, U2F, FIDO2 U2F (Webauthn), Email Token and Trusted Devices
-
one-time
One Time Password (TOTP and HOTP) library for Clojure. TOTP/HOTP is widely used for Two Factor / Multi Factor Authentication.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
It's me and two others though I'm definitely the most active. We put a lot of effort into security best practices and one of my co-developers is currently reviewing the 4.38.0 release. It's a fairly major release with a lot of important code paths that have been improved for the future.
Our official docs can be found at https://www.authelia.com and you can find docs for a particular PR in the relevant PR. We've also linked the pre-release docs in the pre-release discussions which can be found here: https://github.com/authelia/authelia/discussions/categories/...
Undying fondness for aws-vault to securely cache my session credentials.
Project mention: Maintainers of Zitadel and Ory discuss their tradeoffs as identity platforms | news.ycombinator.com | 2024-03-30
Project mention: Google will disable all but OAuth for IMAP, SMTP and POP starting Sept. 30 | news.ycombinator.com | 2024-01-18https://github.com/smallstep/cli implements some OAuth flows from the CLI, it may be helpful for you.
Can’t you just use a HOPT/TOPT so the user can scan a QR code with e.g google authenticator? Check https://github.com/pyauth/pyotp for more information
Well, my favourite thing about posting on Reddit is learning new things. https://github.com/MaxHalford/prince I looked up the Prince and I'll be reading up about FAMD shotly - thanks!
In order to reach a client's domain for a project, my team needs to use a VPN and the instructions were pretty clear regarding which tool to use - GlobalProtect VPN - so I've installed https://github.com/yuezk/GlobalProtect-openconnect and was able to connect successfully.
Project mention: Show HN: AuthWin – Authenticator App for Windows | news.ycombinator.com | 2024-03-03This library uses the GPL v3 license: https://github.com/scito/extract_otp_secrets?tab=GPL-3.0-1-o...
Your options are to either go open-source or remove the library.
Project mention: NIST: Personal Identity Verification (PIV) of Federal Employees and Contractors | news.ycombinator.com | 2024-03-23PuTTY-CAC was an interesting, although imperfect solution to using PIV/CAC cards together with SSH. I remember piloting it from 2013-2014 at an agency. Back then, it was maintained by Dan Risacher[0]. Nowadays it is maintained on GitHub[1] and adopted some interesting features like FIDO.
[0] https://risacher.org/putty-cac/
[1] https://github.com/NoMoreFood/putty-cac
Project mention: Google Authenticator finally, mercifully adds account syncing for two-factor codes | /r/google | 2023-04-25
To deal with the OTP (or any other 2FA), we can use wait-for-secrets. Compared to the previous basic usage, we are splitting the Lerna-Lite Version & Publish into 2 separate tasks. The reason is simple, calling the OTP too early would timeout even before reaching the publish phase, so calling the OTP just before the publish is the best way to avoid invalid pin.
Project mention: Anyone centrally managing clients VPN connections/users/settings? | /r/selfhosted | 2023-06-28
Project mention: Rauthy OIDC v0.19 — Better support for Solid and Matrix | /r/SelfhostingHub | 2023-11-18
Mfa related posts
- ESP32 MFA TOTP Generator
- How to publish on npm with `--provenance` using Lerna-Lite
- django authentication , login with otp
- Rejected GitHub Profile Achievements
- Managing credentials for automated scripts
- Which SSO supports passkey? (webauthn)
- Django WebAuthn Support?
-
A note from our sponsor - InfluxDB
www.influxdata.com | 23 Apr 2024
Index
What are some of the best open-source Mfa projects? This list will help you:
Project | Stars | |
---|---|---|
1 | authelia | 19,523 |
2 | cas | 10,629 |
3 | aws-vault | 8,127 |
4 | zitadel | 6,982 |
5 | cli | 3,478 |
6 | pyotp | 2,826 |
7 | speakeasy | 2,662 |
8 | privacyIDEA | 1,425 |
9 | prince | 1,188 |
10 | GlobalProtect-openconnect | 1,127 |
11 | aws-mfa | 1,005 |
12 | extract_otp_secrets | 959 |
13 | product-is | 713 |
14 | bastion | 635 |
15 | putty-cac | 444 |
16 | a12n-server | 422 |
17 | google-authenticator-exporter | 361 |
18 | wait-for-secrets | 271 |
19 | django-mfa2 | 226 |
20 | awsu | 172 |
21 | wag | 165 |
22 | rauthy | 165 |
23 | one-time | 158 |
Sponsored