6 مستودعات
Mechanisms for validating identity and API requests using cryptographic signatures.
Distinguishing note: Focuses on asymmetric verification of tokens rather than generic credential storage.
Explore 6 awesome GitHub repositories matching security & cryptography · Authentication Verification. Refine with filters or upvote what's useful.
Filament is a full-stack framework for building administrative panels and management interfaces within the Laravel ecosystem. It provides a declarative, component-based architecture that allows developers to construct complex, data-driven applications using server-side configuration objects rather than manual HTML. By inspecting database model structures and relationships, the framework automates the generation of CRUD interfaces, forms, and data tables, significantly reducing boilerplate code. The project distinguishes itself through a highly modular and extensible design that supports custo
Validates user access by requiring time-based one-time passwords generated by external authenticator applications.
Ente is a privacy-focused platform for end-to-end encrypted storage and two-factor authentication management. It functions as a zero-knowledge identity provider, ensuring that all cryptographic operations, key derivation, and data encryption occur locally on the user's device. By maintaining this architecture, the service provider remains unable to access or decrypt any stored personal information or authentication credentials. The platform distinguishes itself through a combination of on-device intelligence and resilient data distribution. It utilizes a local machine learning engine to perfo
Validates API requests by decrypting tokens with client-side private keys to confirm identity without exposing raw credentials.
OpenZeppelin Contracts is a library of modular, secure, and reusable smart contract components designed for the development of decentralized applications. It provides a foundational framework for building standard-compliant contracts, offering battle-tested implementations for token standards, access control, and common utility patterns. The project distinguishes itself through its comprehensive support for complex architectural patterns, including proxy-based upgradeability, role-based access control, and account abstraction. It enables developers to implement modular logic injection via hoo
Validates cryptographic signatures generated by biometric passkeys onchain to authenticate user actions without requiring traditional private key management.
oauth2_proxy هو وكيل عكسي OAuth2 وبوابة مصادقة تحمي الخدمات الأولية من خلال مطالبة المستخدمين بالمصادقة عبر موفري هوية خارجيين. يعمل كطبقة تسجيل دخول آمنة لتطبيقات الواجهة الخلفية التي تفتقر إلى مصادقة مستخدم مدمجة. يوفر المشروع تحكماً مركزياً في الوصول عن طريق تقييد الدخول بناءً على نطاقات البريد الإلكتروني، أو عضوية المؤسسة، أو قوائم المستخدمين المعتمدة. يتكامل مع موفري الهوية عبر عناوين URL للمصدر وأسرار العميل، ويدعم طرق مصادقة إضافية مثل ملفات htpasswd. تدير البوابة إعادة توجيه الهوية الآمنة عن طريق تمرير تفاصيل المستخدم الموثق ورموز الوصول إلى خدمات الواجهة الخلفية من خلال رؤوس HTTP مخصصة أو مصادقة أساسية. تتضمن إمكانات لإدارة ملفات تعريف ارتباط الجلسة، وإنهاء اتصال SSL، والقدرة على إعفاء مسارات طلب محددة من المصادقة باستخدام التعبيرات النمطية. يتم توفير أمان إضافي من خلال توقيع طلب HMAC للتحقق من أصل الطلبات الوكيلة. يتم دعم حركة المرور ومراقبة النظام من خلال تسجيل الطلبات الواردة وبيانات تعريف الطلب الوكيل التفصيلية. يسمح النظام أيضاً بصفحات مصادقة مخصصة عبر قوالب HTML ويدعم إعادة تحميل التكوين التلقائي من الملفات.
Exposes a dedicated endpoint to verify the authentication state for external proxy directives.
gogcli is a single command-line binary that manages Gmail, Drive, Calendar, Docs, Sheets, Slides, Forms, Apps Script, Contacts, People, Tasks, Classroom, Chat, Groups, Keep, and Workspace Admin services through a predictable service resource method grammar. It authenticates across multiple Google accounts using OAuth, service accounts, access tokens, or application default credentials, storing credentials in the OS keyring for secure persistence. The tool also exposes a Model Context Protocol server over stdio that registers typed tools for agent clients, and can invoke any Google Discovery-
Stores OAuth tokens and service account keys in native OS keyrings or encrypted files for secure persistence.
This library provides a backend framework for implementing FIDO2-compliant authentication and passwordless login flows in Go applications. It serves as a server-side toolkit for managing hardware-backed identity verification, enabling developers to integrate secure, browser-based authentication protocols that utilize security keys and biometric sensors. The project distinguishes itself by offering comprehensive tools for credential lifecycle management and hardware attestation. It handles the registration and storage of public key metadata while enforcing strict security requirements, such as
Confirms user identity by checking cryptographic signatures from hardware devices against stored credentials during login.