awesome-repositories.com
Blog
awesome-repositories.com

Descoperă cele mai bune repository-uri open source cu căutare AI.

ExploreazăCăutări recomandateAlternative open-sourceSoftware self-hostedBlogHartă site
ProiectDespreCum realizăm clasamentulPresăServer MCP
LegalConfidențialitateTermeni
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

20 repository-uri

Awesome GitHub RepositoriesDevice Authentication Flows

Authentication mechanisms designed for input-constrained devices or command-line interfaces using browser-based flows.

Distinguishing note: Specifically implements the OAuth2 device authorization grant for CLI-based interactive login.

Explore 20 awesome GitHub repositories matching security & cryptography · Device Authentication Flows. Refine with filters or upvote what's useful.

Awesome Device Authentication Flows GitHub Repositories

Găsește cele mai bune repo-uri cu AI.Vom căuta cele mai potrivite repository-uri folosind AI.
  • gitroomhq/postiz-appAvatar gitroomhq

    gitroomhq/postiz-app

    32,271Vezi pe GitHub↗

    Postiz is an open-source social media management platform designed to centralize the scheduling, publishing, and analysis of content across diverse social networks, community forums, and blogging platforms. It functions as a unified hub where users can coordinate, review, and distribute content through a shared team workspace, while leveraging integrated artificial intelligence to assist in drafting text and generating multimedia assets. The platform distinguishes itself through a modular architecture that utilizes a provider-specific adapter pattern to ensure consistent content distribution

    Authorizes command line interfaces by displaying a code and opening a browser to manage sessions without manual configuration.

    TypeScriptnextjsopen-sourceopen-source-social-media-scheduling-tool
    Vezi pe GitHub↗32,271
  • kurikomi-labs/komi-storeK

    kurikomi-labs/komi-store

    15,630Vezi pe GitHub↗

    Komi Store is an Android app store client designed for discovering and installing applications directly from git repository releases. It functions as a git release manager and APK package manager, allowing users to track software versions and assets hosted on git platforms. The project differentiates itself by integrating deep git repository functionality, such as an OAuth repository browser for managing issues and pull requests, and a system for importing starred repositories. It utilizes a multi-provider aggregation model to normalize release data from various git hosting platforms into a u

    Handles user authentication by routing device-flow requests through a backend proxy to exchange codes for tokens.

    Kotlin
    Vezi pe GitHub↗15,630
  • supertokens/supertokens-coreAvatar supertokens

    supertokens/supertokens-core

    14,922Vezi pe GitHub↗

    SuperTokens Core is an open-source, self-hosted authentication and identity management platform designed for deployment within private infrastructure. It provides a comprehensive suite for managing user accounts, roles, and secure authentication flows, utilizing a modular, recipe-based architecture that allows developers to enable specific security features without modifying the core codebase. The platform distinguishes itself through its robust multi-tenancy capabilities, which allow for the logical or physical isolation of user records and configuration settings across different organizatio

    Identifies and alerts on authentication attempts from previously unseen devices to prevent unauthorized access.

    Javaauth0authenticationaws-cognito
    Vezi pe GitHub↗14,922
  • zitadel/zitadelAvatar zitadel

    zitadel/zitadel

    13,029Vezi pe GitHub↗

    This project is a cloud-native identity and access management platform designed to centralize authentication, authorization, and identity lifecycle management. It functions as a standards-compliant OpenID Connect authorization server, providing secure session management and token issuance for web, mobile, and device-based applications. The platform is built to handle complex identity requirements through stateless token authentication and support for modern passwordless methods, including biometrics and hardware keys. What distinguishes this platform is its native support for multi-tenant env

    Implements device-based authorization flows for hardware with limited input capabilities.

    Go2faauthenticationauthorization
    Vezi pe GitHub↗13,029
  • modelcontextprotocol/typescript-sdkAvatar modelcontextprotocol

    modelcontextprotocol/typescript-sdk

    12,674Vezi pe GitHub↗

    This project provides a TypeScript software development kit for the Model Context Protocol, a standard designed to facilitate bidirectional communication between AI applications and external data sources or tools. It serves as a foundational framework for building both clients and servers, enabling language models to interact with external systems through a unified, decoupled interface. The SDK distinguishes itself by implementing a transport-agnostic connection layer that supports both local standard input-output streams and remote HTTP endpoints. It utilizes a JSON-RPC message bus to manage

    Verifies identity for publishing using automated device flows initiated through the command line.

    TypeScript
    Vezi pe GitHub↗12,674
  • abraunegg/onedriveAvatar abraunegg

    abraunegg/onedrive

    12,577Vezi pe GitHub↗

    This project is a command-line synchronization client for OneDrive and SharePoint libraries on Linux. It functions as a synchronization engine that aligns local filesystems with cloud storage through bidirectional, unidirectional, or download-only workflows. The client supports headless authentication for servers without web browsers and can be deployed as a background service or within a containerized environment. It enables the management of multiple distinct cloud accounts on a single system and integrates with shared SharePoint sites and document libraries. The synchronization engine inc

    Supports sign-in via device authorization flows for systems without a web browser.

    D
    Vezi pe GitHub↗12,577
  • siderolabs/talosAvatar siderolabs

    siderolabs/talos

    10,659Vezi pe GitHub↗

    Talos is a minimal, immutable Linux distribution designed specifically for deploying and managing Kubernetes clusters. It functions as an API-driven infrastructure manager that replaces traditional shell access with a declarative gRPC interface to control operating system state and configuration. The system is distinguished by its use of a read-only root filesystem and a security-hardened kernel, which removes standard GNU utilities to reduce the attack surface. It ensures environment consistency by distributing the operating system as versioned, signed images and utilizes TPM-backed verified

    Implements OAuth2 device flow for secure identity verification during remote system configuration downloads.

    Gocloud-nativecontainerdgo
    Vezi pe GitHub↗10,659
  • aceberg/watchyourlanAvatar aceberg

    aceberg/WatchYourLAN

    7,045Vezi pe GitHub↗

    WatchYourLAN is a self-hosted network discovery and monitoring tool written in Go. It scans local network interfaces using ARP requests to detect connected devices, tracks their online and offline status over time, and identifies when new or previously unseen hosts appear on the network. The application stores host data and connection history in either SQLite or PostgreSQL, and can export metrics to InfluxDB or expose a Prometheus endpoint for long-term storage and visualization in dashboards like Grafana. The tool provides a REST API for programmatic management of monitored hosts, including

    Identifies and flags previously unseen devices appearing on the local network.

    Goarp-scanarp-scannerintrusion-detection
    Vezi pe GitHub↗7,045
  • thephpleague/oauth2-serverAvatar thephpleague

    thephpleague/oauth2-server

    6,650Vezi pe GitHub↗

    This project is a PHP library for implementing a spec-compliant OAuth 2.0 authorization server. It serves as an authentication framework for managing user identities and client authorizations, providing the necessary components to issue and validate access and refresh tokens. The server supports a wide range of standardized authorization flows, including authorization code exchange, device grants, implicit flows, and PKCE enforcement. It handles complex token lifecycles through refresh token rotation, scope management, and the use of asymmetric keys for signing digital tokens. The system pro

    Implements the OAuth 2.0 device authorization grant for hardware with limited input capabilities.

    PHPoauthoauth2oauth2-server
    Vezi pe GitHub↗6,650
  • astrada/google-drive-ocamlfuseAvatar astrada

    astrada/google-drive-ocamlfuse

    5,944Vezi pe GitHub↗

    google-drive-ocamlfuse is a FUSE-based filesystem that mounts a Google Drive account as a local directory, enabling standard file operations on cloud files. It bridges POSIX filesystem calls to the Google Drive API, allowing users to read, write, and manage files through their operating system's native file manager or command line. The project distinguishes itself through support for multiple simultaneous Google Drive accounts, each mounted as an independent local directory with separate authentication and cache state. It handles Google Docs, Sheets, and Slides by exporting them as read-only

    Authenticates headless devices to Google Drive using the OAuth2 device authorization grant flow.

    OCamlfilesystemfusegoogle-drive
    Vezi pe GitHub↗5,944
  • maiot-io/zenmlAvatar maiot-io

    maiot-io/zenml

    5,452Vezi pe GitHub↗

    ZenML is an extensible machine learning orchestration framework designed to manage the end-to-end lifecycle of data pipelines and AI agent workflows. It functions as a durable orchestrator that executes machine learning tasks as directed acyclic graphs, ensuring that every step is containerized for consistent performance across local, cloud, and hybrid infrastructure. By decoupling pipeline code from underlying compute and storage backends, the platform allows developers to define infrastructure-agnostic stacks that remain portable across diverse environments. The project distinguishes itself

    Links local clients to servers using web-based login and issues time-limited tokens based on device trust status.

    Python
    Vezi pe GitHub↗5,452
  • zenml-io/zenmlAvatar zenml-io

    zenml-io/zenml

    5,451Vezi pe GitHub↗

    ZenML is an orchestration platform designed for building, deploying, and monitoring reproducible machine learning pipelines and agentic workflows. It provides a unified framework that manages the entire lifecycle of machine learning assets, from data processing and model training to the deployment of persistent inference services. By decoupling pipeline logic from underlying compute and storage, the platform enables teams to transition workflows seamlessly from local development environments to production-grade cloud infrastructure. The platform distinguishes itself through a service-oriented

    Implements browser-based authentication flows for command-line interfaces to issue time-limited access tokens.

    Pythonagentopsagentsai
    Vezi pe GitHub↗5,451
  • galaxy-s10/billd-deskAvatar galaxy-s10

    galaxy-s10/billd-desk

    5,418Vezi pe GitHub↗

    This project is a remote desktop software suite and administration tool designed for controlling remote devices via web browsers or desktop applications across different operating systems. It functions as a secure remote access gateway and device manager, providing a centralized backend for auditing sessions and deploying private infrastructure to target machines. The system distinguishes itself through the use of GPU-accelerated video streaming and hardware encoding to reduce latency. It enables multi-device monitoring via a screen wall and supports the creation of virtual display emulations

    Implements a secure handshake process using unique device identifiers and tokens to validate remote access requests.

    TypeScriptcoturnelectronflutter
    Vezi pe GitHub↗5,418
  • spring-projects/spring-authorization-serverAvatar spring-projects

    spring-projects/spring-authorization-server

    5,102Vezi pe GitHub↗

    Spring Authorization Server is an OAuth 2.1 and OpenID Connect 1.0 authorization server built on Spring Security. It implements the full protocol surface for issuing access and refresh tokens, including authorization code, client credentials, device code, and token exchange grants, as well as pushed authorization requests and user consent management. The server also functions as an OpenID Connect provider, supporting ID tokens, userinfo, discovery, logout, and dynamic client registration. The project distinguishes itself through an extensible framework that allows custom grant types, pluggabl

    Processes device authorization requests, providing a verification URI and user code for secondary device authentication and consent.

    Java
    Vezi pe GitHub↗5,102
  • azuread/microsoft-authentication-library-for-jsAvatar AzureAD

    AzureAD/microsoft-authentication-library-for-js

    4,084Vezi pe GitHub↗

    This project is an OAuth 2.0 client library and OpenID Connect SDK designed for integrating Microsoft identity platforms into JavaScript applications. It serves as a cross-platform authentication client for managing user identities and daemon services across browser-based and server-side environments. The library provides tools for acquiring and managing JSON Web Tokens to secure access to protected web APIs. It supports various authentication flows, including single-page application authentication, server-side identity management in Node.js, and non-interactive authentication for background

    Provides the device authorization grant flow for authenticating users on input-constrained devices.

    TypeScript
    Vezi pe GitHub↗4,084
  • bubka/2fauthAvatar Bubka

    Bubka/2FAuth

    3,779Vezi pe GitHub↗

    2FAuth is a self-hosted two-factor authentication server and credential vault. It functions as a web-based authenticator app used to organize and generate time-based one-time passwords and other security codes for multiple accounts in a central location. The system distinguishes itself as an API-driven security manager, allowing authentication codes to be integrated into automated workflows and external applications. It also supports shared security credentialing through the use of isolated vaults and shared folders for team collaboration. The project covers a broad range of security and dat

    Sends email alerts when failed logins occur or when an account is accessed from a new device.

    PHP2fa2factorhotp
    Vezi pe GitHub↗3,779
  • usekaneo/kaneoAvatar usekaneo

    usekaneo/kaneo

    3,218Vezi pe GitHub↗

    Kaneo is an open-source project management platform built around a kanban board interface for organizing tasks into columns with drag-and-drop status management. It functions as a self-hosted task manager that supports multiple workspaces, organizations, and role-based access control, with all persistent data stored in a PostgreSQL relational database and exposed through a RESTful JSON API. The platform distinguishes itself through deep external integration capabilities, connecting project workflows to GitHub, Gitea, Slack, Discord, and Telegram with automated event-driven actions. A webhook

    Supports secure user authorization via the OAuth2 device flow for input-constrained clients.

    TypeScripthacktoberfesthonoissue-management
    Vezi pe GitHub↗3,218
  • karthink/gptelAvatar karthink

    karthink/gptel

    3,192Vezi pe GitHub↗

    gptel is an LLM Emacs client and multi-backend AI integration system that allows users to interact with large language models directly inside the Emacs text editor. It serves as an AI-powered text refactoring tool and a context-aware prompt manager, providing a unified interface to connect with various AI providers, including local Ollama instances, AWS Bedrock, and Gemini. The project distinguishes itself as a Model Context Protocol client, connecting to MCP servers to provide language models with external tools and data sources. It enables context-augmented prompting by aggregating text fro

    Provides a device authorization flow for signing into AI providers without manual secret key entry.

    Emacs Lispchatgptemacsllms
    Vezi pe GitHub↗3,192
  • dotheevo/selfhosted-apps-dockerAvatar DoTheEvo

    DoTheEvo/selfhosted-apps-docker

    2,833Vezi pe GitHub↗

    This project is a curated collection of deployment files and configurations for hosting a wide variety of open-source services on a home server. It primarily utilizes Docker and Docker Compose to automate the orchestration, lifecycle management, and deployment of containerized applications. The repository provides a comprehensive suite for self-hosted infrastructure, covering network management tools, media streaming, and home automation. It includes specialized configurations for securing internal services via reverse proxies, WireGuard VPN tunnels, and automated SSL/TLS certificate manageme

    Alerts administrators via webhooks when unknown MAC addresses are detected on the network.

    Shell
    Vezi pe GitHub↗2,833
  • moonshotai/kimi-codeAvatar MoonshotAI

    MoonshotAI/kimi-code

    2,473Vezi pe GitHub↗

    Kimi-code is a command-line interface and orchestration framework designed to integrate autonomous AI agents into software development workflows. It functions as a terminal-based assistant that manages multi-step coding tasks, including planning, file system modifications, shell command execution, and test running, all while maintaining conversational context within a local development environment. The project distinguishes itself through a focus on secure, autonomous agent orchestration and granular control over AI interactions. It enforces strict security by requiring explicit user approval

    Implements secure OAuth2 device authorization flows for browser-independent terminal authentication.

    TypeScript
    Vezi pe GitHub↗2,473
  1. Home
  2. Security & Cryptography
  3. Device Authentication Flows

Explorează sub-etichetele

  • Auth Server MediatorsPrivate instances of authentication services for managing device flow and identity verification. **Distinct from Device Authentication Flows:** Distinct from device authentication flows: focuses on the hosting of the auth server itself rather than the flow protocol.
  • New Device AlertsTracks login history to identify and alert on authentication attempts from previously unseen devices. **Distinct from Device Authentication Flows:** Focuses on device-based security alerting, distinct from general device authentication flows.