Projects

OpenSSO

The Open Web SSO project provides core identity services to simplify the implementation of transparent single sign-on as a security component in a network infrastructure. It provides the foundation for integrating diverse web applications that might typically operate against a disparate set of ... [More] identity repositories and are hosted on a variety of platforms such as web and application servers. [Less]

DotNetOpenAuth

claimed by Outercurve Foundation

Formerly known as DotNetOpenId, this library brings easy and flexible OpenID, OAuth and InfoCard to the .NET platform Please visit our official site at http://www.dotnetopenauth.net/ Featuring: * OpenID 1.x/2.0 support for both Providers and Relying Parties * Simple Registration, Attribute ... [More] Exchange, PAPE extensions built-in. * OAuth 1.0/1.0a Service Providers & Consumers * InfoCard Selector * Support for shared hosting (partial trust) * Support for web farms/gardens, Azure * 500+ unit tests [Less]

Apache Shiro

claimed by Apache Software Foundation

Apache Shiro is an easy-to-use application security framework that cleanly handles authentication, authorization, enterprise session management and cryptography. Our mission: To provide the most robust and comprehensive application security framework available while also being very easy to understand and extremely simple to use.

LemonLDAP::NG Web-SSO

Lemonldap::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting. So you can have a full AAA protection for your web space as ... [More] described below. Lemonldap::NG is a complete rewrite of Lemonldap. All components needed to use it and to aminister it are included in the tarball. Contrary, all modules developed for Lemonldap may not work with Lemonldap::NG. [Less]

simpleSAMLphp

A PHP implementation of SAML 2.0 service provider and identity provider functionality. And is also compatible with Shibboleth 1.3 and 2.0.

Enterprise Sign On Engine

The Enterprise Sign On Engine (ESOE) is an advanced system which allows an enterprise to meet it's individual goals for integrated identity management, single sign on, authorization, federation and accountability for resource access in a very extensible manner. The ESOE is built using the ... [More] OASIS SAML 2.0 specification, and the ESOE's powerful authorization engine is built around a reduced version of the OASIS XACML 2.0 standard which we have called Lightweight eXtensible Authorization Control Markup Language or "LXACML". The ESOE can integrate identity from unlimited repositories, automatically create sessions for users whom are logged into Active Directory (true single sign on), provide for centralized authorization policy management and natively federate with technologies such as Shibbo [Less]

authentic2

Authentic is a versatile identity provider aiming to address a broad range of needs, from simple to complex setups; it has support for many protocols and can bridge between them.

ShARPE

ShARPE is developed as part of the collaboration between MAMS and Shibboleth. ShARPE's aim is to manage the creation and maintenance of user's attributes as defined by Attribute Release Policy (ARP) mechanism of Shibboleth. In particular, ShARPE allows admins and users to easily manage ... [More] their release attribute policy in a way that conforms to their privacy and satisfaction of users in gaining the services that they want (on service provider end) To do the crosswalk between different directory schemas mappings have to be defined. This can be achieved using the Crosswalker. ShARPE is also an extension of Shibboleth providing other functionalities that are not existence in current Shibboleth as well as improving current practices in Shibboleth [Less]

AccesStream

Accesstream is an open source, embeddable identity, access management (IAM), security and auditing platform written in Java

libopkele

libopkele is a c++ implementation of an OpenID decentralized identity system. It provides OpenID protocol handling, leaving authentication and user interaction to the implementor.