Rauthy: OpenID Connect Single Sign-On Identity and Access Management
a year ago
- #Rust
- #Single Sign-On
- #OpenID Connect
- Rauthy is a lightweight OpenID Connect Identity Provider with secure defaults and flexible configuration options.
- It emphasizes Passkeys and strong security, written in Rust for efficiency and speed, suitable for IoT and CLI tools.
- Features include High-Availability, client branding, UI translation, Admin UI, Events, Auditing, and more.
- Supports two database options: embedded Hiqlite (default) or Postgres, with minimal memory footprint.
- Offers two login options: Password + Security Key or Passkey-Only Accounts with User Verification.
- Designed for low resource usage, can run on a Raspberry Pi, with extensive caching for performance.
- Includes an Admin UI and user account dashboard for self-management of passwords, passkeys, etc.
- Provides client branding options, event and alerting system, brute-force and DoS protection.
- Suitable for IoT projects with OAuth Device Authorization Grant flow and compatibility for headless devices.
- Benchmarks show capability to handle millions of users efficiently, with some limitations in user-search speed.
- Already in production, works with typical OIDC clients, and offers a wide range of features and configurations.
- Quick start available with Docker for local testing, includes insecure demo config for easy setup.