Top 23 Oauth2 Open-Source Projects

  • hackathon-starter

    A boilerplate for Node.js web applications

  • Project mention: Stay Ahead of the Game Must Have Front-End Boilerplates and Starter Kits for Every Developer | dev.to | 2023-09-06

    Well, I've never attended a Hackerthon before and have no prior knowledge of what it looks like. But I happen to come across a guide that we'll help me start up when the time comes. The Hackerthon starter will help you set up a NodeJS application and will help you focus on what is really important. This starter also provides you with a boilerplate that features local authentication with email and password, authentication via Twitter, Facebook, Google, GitHub, LinkedIn, and Instagram, flash notifications, MVC project structure, account management, API examples, and much more to help you get started.

  • Passport

    Simple, unobtrusive authentication for Node.js.

  • Project mention: Non-technical person looking for your help | /r/webdev | 2023-06-24

    Next, use something like https://www.npmjs.com/package/passport, this is authentication middleware, and it works similarly for different authentication providers. Carefully read the documentation. OAuth is complicated, but that's because it solves a complicated problem

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
  • next-auth

    Authentication for the Web.

  • Project mention: Deploy Full-Stack Next.js T3App with Cognito and Prisma using AWS Lambda | dev.to | 2024-04-15

    NextAuth.js is not perfect. One of the shortcomings is that it currently does not implement federated logout. This means that even if a user signs out of the Next.js app, he does NOT get signed out of the Cognito user pool client. As a consequence, the user is not really being logged out (i.e he is able to login again without providing the credentials). You can read more about this problem in this Github thread.

  • API-Security-Checklist

    Checklist of the most important security countermeasures when designing, testing, and releasing your API

  • authelia

    The Single Sign-On Multi-Factor portal for web apps

  • Project mention: Keycloak SSO with Docker Compose and Nginx | news.ycombinator.com | 2024-02-11

    It's me and two others though I'm definitely the most active. We put a lot of effort into security best practices and one of my co-developers is currently reviewing the 4.38.0 release. It's a fairly major release with a lot of important code paths that have been improved for the future.

    Our official docs can be found at https://www.authelia.com and you can find docs for a particular PR in the relevant PR. We've also linked the pre-release docs in the pre-release discussions which can be found here: https://github.com/authelia/authelia/discussions/categories/...

  • Ory Hydra

    OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.

  • Project mention: Show HN: Open-source OAuth2 server Ory Hydra now 6x faster | news.ycombinator.com | 2024-02-13
  • cas

    Apereo CAS - Identity & Single Sign On for all earthlings and beyond.

  • Project mention: The Central Authentication Service Project | news.ycombinator.com | 2023-08-08
  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  • django-allauth

    Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication.

  • Project mention: Django SaaS Package | /r/django | 2023-06-25

    If you don't want to use Pegasus or another paid product (presumably because of the cost), the packages I'd reach for are django-allauth for login/user stuff and dj-stripe for the Stripe integration. As for teams, there wasn't a library I was happy with so I rolled my own for Pegasus, but some people like django-tenants. It's too heavyweight for my taste as it requires a more complex dev/test/infrastructure setup with Postgres schemas, as opposed to having a single-database and handling multitenancy in the application layer. But there are pros and cons to both approaches.

  • C++ REST SDK

    The C++ REST SDK is a Microsoft project for cloud-based client-server communication in native code using a modern asynchronous C++ API design. This project aims to help C++ developers connect to and interact with services.

  • Project mention: What is the industry standard today in C++ to deploy REST microservices in Kubernetes? | /r/cpp | 2023-09-06

    My favourite was Microsoft's cpprestsdk, but for some reason now is in maintenance mode, I don't know why, so it's hard to suggest it for new projects. A nice alternative is restc-cpp, that's has a good high-level interface, if this is what you want.

  • logto

    🧑‍🚀 The better identity infrastructure for developers and the open-source alternative to Auth0.

  • Project mention: Logto v1.12.0 - Organizations, SSO, and MFA | /r/selfhosted | 2023-12-06
  • zitadel

    ZITADEL - The best of Auth0 and Keycloak combined. Built for the serverless era.

  • Project mention: Maintainers of Zitadel and Ory discuss their tradeoffs as identity platforms | news.ycombinator.com | 2024-03-30
  • authentik

    The authentication glue you need.

  • Project mention: Show HN: Stack, the open-source Clerk/Firebase Auth alternative | news.ycombinator.com | 2024-04-14

    If you're looking for a system that has more features, is user friendly, a nice admin ui and easy deployments compared to Keycloak. Please give https://goauthentik.io/ a shot. Not affiliated in any way, just a very happy user.

    It has

    -an admin UI

    - Supports (LDAP, SAML, OAUTH, social logins)

    - MFA, Passkeys

    - Application access based on user groups etc

  • PHP OAuth 2.0 Server

    A spec compliant, secure by default PHP OAuth 2.0 Server

  • scribejava

    Simple OAuth library for Java

  • Doorkeeper

    Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape.

  • oauth2

    Go OAuth2

  • authlib

    The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.

  • nango

    A single API for all your integrations.

  • Project mention: Ask HN: Creating SDKs for Multiple Languages? | news.ycombinator.com | 2024-05-16
  • openiddict-core

    Flexible and versatile OAuth 2.0/OpenID Connect stack for .NET

  • Project mention: Recommendations for Free Library/Service to Separate Authentication in Legacy ASP.NET (ASPX) Application | /r/dotnet | 2023-06-01

    Openiddict is also an option. Check it out.https://github.com/openiddict/openiddict-core

  • Grant

    OAuth Proxy

  • Project mention: Most stable and easy to implement Auth with SvelteKit? | /r/sveltejs | 2023-12-05
  • OAuth 2.0 Client

    Easy integration with OAuth 2.0 service providers.

  • timeliner

    All your digital life on a single timeline, stored locally -- DEPRECATED, SEE TIMELINIZE (link below)

  • Project mention: I Ditched Google Photos | news.ycombinator.com | 2023-08-31

    Heya! I'm the author of PhotoStructure, and my Google Photos account (before I started working on PhotoStructure) is about that size, too.

    I wrote up some tips here: https://photostructure.com/faq/takeout/

    This is what I did:

    1. First try to fetch all your Google Photos via Takeout in one archive. If it fails (like it did for me), try different-sized .tgz archives. I had to use the 10 Gb option (using 50gb caused an internal-to-google error).

    If that fails to work, the last resort is to manually create by-year albums, shove all photos from that year into that album, and do a takeout of just that album. Repeat as necessary for every year.

    2. Install an app on your phone to *directly* upload the original photos and videos from your phone to your NAS/home server. I have several recommended apps here: https://photostructure.com/faq/how-do-i-safely-store-files/#...

    At this point, you can still use Google Photos (for viewing and as a last-ditch backup), but your originals are safe (without all the Google Photo downsampling and metadata shenanigans), and you're free to use whatever self-hosted software you want (like PhotoStructure, but there are a ton of alternatives, as well).

    FWIW, I also tried this software: https://github.com/mholt/timeliner -- it does what it can, but the files you get via the API has a bunch of metadata stripped from it. I even had captured-at times get mangled with older photos.

  • gmvault

    gmail backup software

  • Project mention: MailPlus locking up Server | /r/synology | 2023-05-30

    Do you have other apps installed? Go into the package center and stop stuff. Your issue isn't corruption it's the old and not very powerful hardware (and possibly your drives) not being enough for the workload. If you want to try a different app there is a docker solution https://github.com/gaubert/gmvault

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Oauth2 related posts

  • Nidam Registration VS Keycloak - a user suggested alternative

    2 projects | 19 May 2024
  • Ask HN: Creating SDKs for Multiple Languages?

    1 project | news.ycombinator.com | 16 May 2024
  • Launch HN: Nango (YC W23) – Open-Source Unified API

    5 projects | news.ycombinator.com | 25 Apr 2024
  • OpenPubkey: Protocol for leveraging OpenID to bind identities to public keys

    1 project | news.ycombinator.com | 21 Apr 2024
  • Learn OAuth by building a client with Node.js

    1 project | news.ycombinator.com | 16 Apr 2024
  • SimpleLogin web version and mobile app frequently appear 429 Error!

    1 project | /r/Simplelogin | 8 Dec 2023
  • Most stable and easy to implement Auth with SvelteKit?

    5 projects | /r/sveltejs | 5 Dec 2023
  • A note from our sponsor - SaaSHub
    www.saashub.com | 27 May 2024
    SaaSHub helps you find the best software and product alternatives Learn more →


What are some of the best open-source Oauth2 projects? This list will help you:

Project Stars
1 hackathon-starter 34,718
2 Passport 22,505
3 next-auth 22,561
4 API-Security-Checklist 22,033
5 authelia 19,775
6 Ory Hydra 15,151
7 cas 10,690
8 django-allauth 8,967
9 C++ REST SDK 7,832
10 logto 7,352
11 zitadel 7,243
12 authentik 7,098
13 PHP OAuth 2.0 Server 6,472
14 scribejava 5,421
15 Doorkeeper 5,259
16 oauth2 5,185
17 authlib 4,316
18 nango 4,244
19 openiddict-core 4,142
20 Grant 4,043
21 OAuth 2.0 Client 3,610
22 timeliner 3,550
23 gmvault 3,550

SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives