kratos
https://github.com/ory/kratos
Go
Next-gen identity server (think Auth0, Okta, Firebase) with ORY-hardened authentication, MFA, FIDO2, profile management, identity schemas, social sign in, registration, account recovery, service-to-service and IoT auth. Can work as an OAuth2 / OpenID Conn
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Go not yet supported2 Subscribers
Add a CodeTriage badge to kratos
Help out
- Issues
- autocomplete: "username" (commit f4a876dc) breaks all server-side login flows
- Courier service health endpoints
- feat: allow disabling verification hook auto-inject
- Dependency: pgx v5.9.2 missing auth downgrade protection (CWE-306, fix in v5.10.0)
- Dependency: pgx v5.9.2 vulnerable to auth downgrade (CWE-306, fix in v5.10.0)
- fix: bump pgx from v5.9.2 to v5.10.0 (CWE-306 auth downgrade, CVSS 7.5)
- JWKS parsing fails entirely when provider includes ES256K (secp256k1 in Telegram OIDC)
- fix: duplicated "the" in clidoc/md_docs and oidc/provider_config comments
- docs: fix typo in recovery strategy comment
- YugabyteDB support
- Docs
- Go not yet supported