< Go

Share Share Share

Awesome Go Authentication and OAuth

• authboss 3,787

  

  | updated 4 months ago | MIT License

  The boss of http auth.

• branca 172

  

  | updated over 4 years ago | MIT License

  🔑 Secure alternative to JWT. Authenticated Encrypted API Tokens for Go.

• branca 84

  

  | updated 3 months ago | MIT License

  Authenticated encrypted API tokens (IETF XChaCha20-Poly1305 AEAD) for Golang

• branca-spec 223

  

  | updated about 3 years ago

  Authenticated and encrypted API tokens using modern crypto

• cookiestxt 12

  

  | updated about 2 years ago | MIT License

  cookiestxt implement parser of cookies txt format

• dockertest 3,676

  

  | updated about 1 year ago | Apache License 2.0

  Write better integration tests! Dockertest helps you boot up ephermal docker images for your Go tests with minimal work.

• fosite 2,300

  

  | updated 4 months ago | Apache License 2.0

  Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.

• go-email-normalizer 64

  

  | updated 3 months ago | MIT License

  Golang library for providing a canonical representation of email address.

• go-guardian 472

  

  | updated over 1 year ago | MIT License

  Go-Guardian is a golang library that provides a simple, clean, and idiomatic way to create powerful modern API and web authentication.

• gologin 1,805

  

  | updated 3 months ago | MIT License

  Go login handlers for authentication providers (OAuth1, OAuth2)

• gorbac 1,509

  

  | updated over 1 year ago | MIT License

  goRBAC provides a lightweight role-based access control (RBAC) implementation in Golang.

• gosession 92

  

  | updated over 1 year ago | MIT License

  This is quick session for net/http in golang. This package is perhaps the best implementation of the session mechanism, at least it tries to become one.

• goth 5,512

  

  | updated 3 months ago | MIT License

  Package goth provides a simple, clean, and idiomatic way to write authentication packages for Go web applications.

• graceful 123

  

  | updated over 1 year ago | Apache License 2.0

  A best practice http server set up that supports graceful shutdown

• herodot 82

  

  | updated over 1 year ago | Apache License 2.0

  A lightweight Go library for writing responses and errors to HTTP

• hydra 14,588

  

  | updated about 1 year ago | Apache License 2.0

  OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.

• jeff 265

  

  | updated over 1 year ago | BSD 3-Clause "New...

  🍍Jeff provides the simplest way to manage web sessions in Go.

• jwt 6,857

  

  | updated 3 months ago | MIT License

  Go implementation of JSON Web Tokens (JWT).

• jwt-auth 231

  

  | updated over 3 years ago | MIT License

  This package provides json web token (jwt) middleware for goLang http servers

• keto 4,745

  

  | updated 3 months ago | Apache License 2.0

  Open Source (Go) implementation of "Zanzibar: Google's Consistent, Global Authorization System". Ships gRPC, REST APIs, newSQL, and an easy and granular permission language. Supports ACL, RBAC, and other access models.

• kratos 8,361

  

  | updated over 1 year ago | Apache License 2.0

  Next-gen identity server (think Auth0, Okta, Firebase) with Ory-hardened authentication, MFA, FIDO2, TOTP, WebAuthn, profile management, identity schemas, social sign in, registration, account recovery, passwordless. Golang, headless, API-only - without templating or theming headaches. Available as a cloud service.

• ladon 2,280

  

  | updated over 1 year ago | Apache License 2.0

  A SDK for access control policies: authorization for the microservice and IoT age. Inspired by AWS IAM policies. Written for Go.

• loginsrv 1,917

  

  | updated over 3 years ago | MIT License

  JWT login microservice with plugable backends such as OAuth2, Google, Github, htpasswd, osiam, ..

• nosurf 1,459

  

  | updated about 2 years ago | MIT License

  CSRF protection middleware for Go.

• oathkeeper 3,220

  

  | updated 3 months ago | Apache License 2.0

  A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming HTTP(s) requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.

• oauth2 5,270

  

  | updated 4 months ago | BSD 3-Clause "New...

  Go OAuth2

• osin 1,832

  

  | updated over 1 year ago | BSD 3-Clause "New...

  Golang OAuth2 server library

• otpgen 135

  

  | updated 10 months ago | MIT License

  Library to generate TOTP/HOTP codes

• otpgo 68

  

  | updated over 3 years ago | MIT License

  Time-Based One-Time Password (TOTP) and HMAC-Based One-Time Password (HOTP) library for Go.

• paseto 740

  

  | updated over 1 year ago | MIT License

  Platform-Agnostic Security Tokens implementation in GO (Golang)

• permissions2 513

  

  | updated 3 months ago | MIT License

  🔐 Middleware for keeping track of users, login states and permissions

• scs 1,562

  

  | updated about 1 year ago | MIT License

  HTTP Session Management for Go

• securecookie 75

  

  | updated almost 2 years ago | MIT License

  Fast, secure and efficient secure cookie encoder/decoder

• session 111

  

  | updated over 2 years ago | Apache License 2.0

  Go session management for web servers (including support for Google App Engine - GAE).

• sessiongate-go 10

  

  | updated almost 3 years ago | MIT License

  A driver for the SessionGate Redis module - easy session management using the Go language.

• sessions 77

  

  | updated over 1 year ago | MIT License

  A dead simple, highly performant, highly customizable sessions middleware for go http servers.

• sessionup 125

  

  | updated over 2 years ago | MIT License

  Straightforward HTTP session management

• signedvalue 10

  

  | updated over 1 year ago | MIT License

  Compatibility layer for tornado's signed values (and secure cookies consequently)

• sjwt 119

  

  | updated 10 months ago | MIT License

  Simple JWT Golang

• x 86

  

  | updated 4 months ago | Apache License 2.0

  Libraries used in the Ory ecosystem