authorization

There are 64 repositories under authorization topic.

casbin / casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
abac access-control acl auth authentication authn authorization authz cas casbin casdoor cloudos cloudsecurity iam oauth oidc permission rbac saml sso
Language:Go 19375
authentik
goauthentik / authentik
The authentication glue you need.
authentication authentik authorization kubernetes oauth2 oauth2-client oauth2-server oidc oidc-client oidc-provider proxy reverse-proxy saml saml-idp saml-sp security sso
Language:Python 18724
Sa-Token
dromara / Sa-Token
一个轻量级 Java 权限认证框架，让鉴权变得简单、优雅！—— 登录认证、权限认证、分布式Session会话、微服务网关鉴权、单点登录、OAuth2.0
aouth2 authorization java springcloud sso token
Language:Java 18316
ory / hydra
The only web-scale, fully customizable OpenID Certified™ OpenID Connect and OAuth2 Provider in the world. Become an OpenID Connect and OAuth2 Provider over night. Written in Go, cloud native, headless, API-first. Available as a service on Ory Network and for self-hosters. Relied upon by OpenAI and others for web-scale security.
authorization cloud docker federation hacktoberfest hydra identity oauth oauth-provider oauth2 oauth2-provider oauth2-server oidc openid openid-connect openid-connect-provider openid-provider security server sso
Language:Go 16653
zitadel
zitadel / zitadel
ZITADEL - Identity infrastructure, simplified for you.
2fa authentication authorization fido2 identity login mfa multitenancy oauth2 oidc openid-connect passkeys saml scim sso user
Language:Go 12134
cas
apereo / cas
Apereo CAS - Identity & Single Sign On for all earthlings and beyond.
authentication authorization aws duosecurity fido identity-provider java ldap-authentication mfa oauth2 open-source openidconnect saml2 spring-boot spring-cloud spring-framework spring-webflow sso sso-authentication websso
Language:Java 11228
fastapi_mcp
tadata-org / fastapi_mcp
Expose your FastAPI endpoints as Model Context Protocol (MCP) tools, with Auth!
ai authentication authorization claude cursor fastapi llm mcp mcp-server mcp-servers modelcontextprotocol openapi windsurf
Language:Python 11026
logto
logto-io / logto
🧑‍🚀 Authentication and authorization infrastructure for SaaS and AI apps, built on OIDC and OAuth 2.1 with multi-tenancy, SSO, and RBAC.
authentication authorization identity openid-connect passwordless social-login oauth2 typescript email sms jwt login mfa password rbac signup sso totp logto saml
Language:TypeScript 10997
open-policy-agent / opa
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
authorization cloud-native compliance declarative json opa open-policy-agent policy
Language:Go 10824
stalniy / casl
CASL is an isomorphic authorization JavaScript library which restricts what resources a given user is allowed to access
acl authorization cancan casl isomorphic-javascript permissions
Language:JavaScript 6624
spicedb
authzed / spicedb
Open Source, Google Zanzibar-inspired database for scalably storing and querying fine-grained authorization data
abac acl authorization ciam cloud-native database distributed-systems entitlements fga fine-grained-access-control fine-grained-authorization kubernetes permissions rbac rebac security security-tools zanzibar
Language:Go 6176
CanCanCommunity / cancancan
The authorization Gem for Ruby on Rails.
authorization cancancan rails
Language:Ruby 5666
permify
Permify / permify
An open-source authorization as a service inspired by Google Zanzibar, designed to build and manage fine-grained and scalable authorization systems for any application.
access-control authorization rbac rebac zanzibar acl golang permissions security distributed fga grpc permission least-privilege abac ciam cloud-native fine-grained-access-control kubernetes
Language:Go 5652
doorkeeper-gem / doorkeeper
Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape.
doorkeeper oauth oauth2-provider oauth2-server ruby-on-rails grape authorization oauth2 authentication identity
Language:Ruby 5439
opal
permitio / opal
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
authorization cedar hacktoberfest microservices opa opal open-policy-agent openfga policy policy-as-code pubsub realtime websocket
Language:Python 5385
unkeyed / unkey
The Developer Platform for Modern APIs
api api-keys authentication authorization gateway open-source rate-limiter
Language:TypeScript 5044
ockam
build-trust / ockam
Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.
messaging authentication key-management identity trust kafka rust security end-to-end-encryption encrypted-connections encrypted-messages zero-trust e2ee encryption credentials authorization distributed-systems snowflake
Language:Rust 4572
google / santa
A binary authorization and monitoring system for macOS
santa security macos authorization allowlist blocklist system-extension endpoint-security
Language:Objective-C++ 4512
openfga / openfga
A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar
abac authorization entitlements fga fine-grained-access-control fine-grained-authorization go golang hacktoberfest openfga pbac permissions rbac rebac security zanzibar
Language:Go 4346
zoontek / react-native-permissions
An unified permissions API for React Native on iOS, Android and Windows.
react react-native permissions authorization
Language:Objective-C++ 4288
grant
simov / grant
OAuth Proxy
nodejs javascript oauth oauth2 authentication authorization express koa hapi server middleware node js aws aws-lambda azure gcp vercel serverless lambda
Language:JavaScript 4171
cerbos
cerbos / cerbos
Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.
access-control authorization go golang kubernetes policy security
Language:Go 4124
marmotedu / iam
企业级的 Go 语言实战项目：认证和授权系统（带配套课程）
go project gin golang authentication authorization application iam gorm
Language:Go 4113
thephpleague / oauth2-client
Easy integration with OAuth 2.0 service providers.
authentication authorization oauth oauth2 php sso
Language:PHP 3755
panva / node-oidc-provider
OpenID Certified™ OAuth 2.0 Authorization Server implementation for Node.js
authorization authorization-server connect oauth2 oidc openid openid-connect openid-provider provider server
Language:JavaScript 3593
JosephSilber / bouncer
Laravel Eloquent roles and abilities.
acl auth authorization eloquent laravel multitenancy permissions php roles security
Language:PHP 3556
oauthlib / oauthlib
A generic, spec-compliant, thorough implementation of the OAuth request-signing logic
authentication authorization identity jwt-authentication jwt-bearer-tokens library oauth oauth1 oauth2 oidc oidc-provider openid-connect python python-3 python3 token-based-authentication
Language:Python 2933
casbin / node-casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Node.js and Browser
abac access-control acl auth authorization authz casbin javascript js node nodejs permission permissions rbac
Language:TypeScript 2816
zenstack
zenstackhq / zenstack
Full-Stack TypeScript toolkit that enhances Prisma ORM with flexible Authorization layer for RBAC/ABAC/PBAC/ReBAC, offering auto-generated type-safe APIs and frontend hooks.
fullstack nextjs orm authorization prisma access-control api openapi rls saas javascript auth acl node permission authz rbac schema ai-friendly
Language:TypeScript 2702
casbin / jcasbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Java
abac access-control acl auth authorization authz casbin java permission rbac xacml
Language:Java 2584
pac4j / pac4j
Security engine for Java (authentication, authorization, multi frameworks): OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
java security authentication authorization cas oauth saml openid-connect j2e spring-mvc spring-security shiro play-framework vertx sparkjava ratpack jax-rs dropwizard ldap jwt
Language:Java 2497
ory / fosite
Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.
golang oauth oauth2 library sdk security auth authentication authorization openid-connect hacktoberfest
Language:Go 2484
supabase / supabase-py
Python Client for Supabase. Query Postgres from Flask, Django, FastAPI. Python user authentication, security policies, edge functions, file storage, and realtime data streaming. Good first issue.
python community supabase auth authentication authorization data-science databases django fastapi flask machine-learning postgres postgresql good-first-issue
Language:Python 2303
onury / accesscontrol
Role and Attribute based Access Control for Node.js
access-control abac rbac roles permissions attributes acl nodejs security authorization
Language:TypeScript 2267
santigarcor / laratrust
Handle roles and permissions in your Laravel application
acl admin-panel authorization laratrust laravel multiuser permissions php rbac roles secure teams
Language:PHP 2267
jwt-dotnet / jwt
Jwt.Net, a JWT (JSON Web Token) implementation for .NET
authorization c-sharp json jwt
Language:C# 2174

authorization

casbin / casbin

goauthentik / authentik

dromara / Sa-Token

ory / hydra

zitadel / zitadel

apereo / cas

tadata-org / fastapi_mcp

logto-io / logto

open-policy-agent / opa

stalniy / casl

authzed / spicedb

CanCanCommunity / cancancan

Permify / permify

doorkeeper-gem / doorkeeper

permitio / opal

unkeyed / unkey

build-trust / ockam

google / santa

openfga / openfga

zoontek / react-native-permissions

simov / grant

cerbos / cerbos

marmotedu / iam

thephpleague / oauth2-client

panva / node-oidc-provider

JosephSilber / bouncer

oauthlib / oauthlib

casbin / node-casbin

zenstackhq / zenstack

casbin / jcasbin

pac4j / pac4j

ory / fosite

supabase / supabase-py

onury / accesscontrol

santigarcor / laratrust

jwt-dotnet / jwt