kratos
https://github.com/ory/kratos
Go
Next-gen identity server (think Auth0, Okta, Firebase) with ORY-hardened authentication, MFA, FIDO2, profile management, identity schemas, social sign in, registration, account recovery, service-to-service and IoT auth. Can work as an OAuth2 / OpenID Conn
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Go not yet supported2 Subscribers
Add a CodeTriage badge to kratos
Help out
- Issues
- disallow_private_ip_ranges and private_ip_exception_urls settings don't work as expected
- fix: configuration to allow `cross-platform` devices for passkeys
- Unable to sign up via passkeys but can log in with Webauthn -> Passkeys
- feat: add id_token support for Microsoft oidc provider.
- Upgrade go-webauthn to 0.11.0
- Cannot patch identity with op: 'test', 'copy', 'move'
- CSRF Error during Login Flow despite passing cookies, X-CSRF-Token headers on SvelteKit Server Side.
- fix: oidc provider id is not added to session data when credentials linked
- [With Hdyra]Kratos return null for login_challenge when previous OIDC for the same client not complete.
- Replace obsolete and vulnerable SHA1 with SHA256 for TOTP.
- Docs
- Go not yet supported