aicoolies logo
Casdoor logo
Casdoor logo

Casdoor

Open-source IAM and SSO platform by Casbin

freemiumopen sourceupdated Jun 2, 2026
Visit Website →
Share

Casdoor is an open-source Identity and Access Management platform built by the Casbin community in Go and React. Supports OAuth 2.0, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, and MFA with a comprehensive web-based admin UI. Provides multi-tenant organization management, flexible RBAC and ABAC access control via Casbin models, and integrations with Google Workspace and Azure AD. Offers self-hosted deployment with optional managed cloud plans.

Casdoor is an open-source Identity and Access Management platform developed by the Casbin community, written in Go with a React-based frontend. It provides a unified authentication gateway supporting OAuth 2.0 and 2.1, OpenID Connect, SAML 2.0, CAS, LDAP, and SCIM protocols, enabling organizations to centralize user management across multiple applications. The platform includes a polished web-based admin console for managing users, organizations, applications, roles, and permissions without writing code.

Built on the Casbin access control library, Casdoor offers exceptionally flexible authorization models including role-based, attribute-based, RESTful, and priority-based access control. Multi-factor authentication covers TOTP, SMS, email verification, Face ID, and WebAuthn hardware keys. The platform supports multi-tenant organization management with isolated user pools, making it suitable for SaaS providers managing multiple client environments. Integrations with Google Workspace, Azure AD, and dozens of third-party identity providers enable federated authentication.

With over 13,300 GitHub stars and Apache 2.0 licensing, Casdoor has become a popular open-source alternative to commercial IAM solutions like Auth0 and Okta. It deploys via Docker or Kubernetes for self-hosted environments, while a managed cloud offering at casdoor.com provides hassle-free operation with flat pricing instead of per-user fees. The platform supports custom themes, webhook notifications, and audit logging for enterprise compliance requirements.

Pricing

Free self-hosted; managed cloud plans available

Platforms

Self-hosted (Docker, K8s), Cloud SaaS

Categories

Tags

Use Cases

Alternatives

Keycloak logo

Keycloak

Open-source identity and access management

Keycloak is an open-source IAM solution with 25K+ GitHub stars by Red Hat. Provides SSO, social login, LDAP/Active Directory federation, standard protocol support (OIDC, OAuth 2.0, SAML), fine-grained authorization, user federation, and admin console. Features identity brokering, multi-tenancy via realms, and client adapters for Java, JavaScript, and Node.js. Self-hosted with no per-user licensing, making it ideal for organizations needing full control over identity infrastructure.

open-sourceOpen Source
Auth0 logo

Auth0

Enterprise identity platform by Okta

Auth0 is an enterprise identity platform by Okta providing authentication, authorization, and user management as a service. Supports social login, passwordless, MFA, SAML, OIDC, machine-to-machine auth, and custom database connections. Features Actions for serverless extensibility, Organizations for B2B multi-tenancy, and adaptive MFA with risk assessment. SDKs for all major platforms. Free tier includes 25,000 MAU. Used by thousands of enterprises globally.

freemium
Clerk logo

Clerk

Drop-in authentication for modern JavaScript apps

Clerk is a complete authentication and user management platform for React, Next.js, and modern JavaScript frameworks. It provides pre-built UI for sign-in, sign-up, user profiles, organizations, MFA, passkeys, JWT sessions, webhooks, and billing. The Hobby plan supports up to 50,000 monthly retained users per app, with Pro, Business, and Enterprise tiers for growing teams.

freemium

Related Tools

MCP Context Forge logo

MCP Context Forge

IBM-backed ContextForge gateway for federating MCP, A2A, REST, and gRPC APIs

MCP Context Forge is IBM’s Apache-2.0 ContextForge project for operating a gateway, registry, and proxy across MCP servers, A2A agents, REST APIs, and gRPC services. It centralizes discovery, authentication, policy controls, federation, and observability, with deployment paths through PyPI, Docker, and Kubernetes.

open-sourceOpen Source
Mergify logo

Mergify

Merge queue, CI insights, flaky-test controls, and stacked pull requests for GitHub teams

Mergify is a pull request automation platform that keeps main branches green with merge queue batching, merge protections, CI Insights, flaky-test detection, and stacked pull requests. Its Stacks workflow turns commits on one local branch into focused PR chains, helping teams review large AI-generated or feature-heavy changes without losing queue safety.

freemium
Terrateam logo

Terrateam

Open-source GitOps automation for Terraform and OpenTofu pull requests

Terrateam is open-source GitOps infrastructure orchestration for Terraform and OpenTofu pull requests. It automates plans and applies in GitHub workflows, supports monorepos and many workspaces, and adds apply-only locks, OPA/Rego policy checks, cost and drift signals, and approval controls without forcing teams into a separate IaC platform.

freemiumOpen Source
Digger logo

Digger

Open-source IaC orchestration that runs Terraform plans and applies from pull request comments

Digger is an open-source infrastructure-as-code orchestration tool for running Terraform and OpenTofu plan/apply workflows from pull request comments. It uses the team’s existing VCS and CI runners instead of adding a separate runner fleet, supports GitHub, GitLab, and Azure DevOps style workflows, and stores PR-level locks and plan cache in the user’s cloud account.

open-sourceOpen SourceTelemetry
KubeAI logo

KubeAI

Kubernetes operator for serving AI inference workloads

KubeAI is an Apache-2.0 Kubernetes operator for deploying and scaling AI inference workloads, including LLMs, embeddings, reranking, and speech-to-text. It gives platform teams OpenAI-compatible endpoints, model proxy/controller primitives, model caching, scale-from-zero behavior, and cluster-native resource management for self-hosted inference on Kubernetes.

open-sourceOpen Source

kubectl-ai

Google’s open-source Kubernetes assistant that translates natural-language intent into precise cluster operations.

kubectl-ai is an AI-powered Kubernetes assistant from Google Cloud Platform. It acts as an intelligent interface for cluster work, translating operator intent into Kubernetes commands and workflows. The key distinction from reactive diagnosis tools is that kubectl-ai is designed as an interactive natural-language interface for planning and executing Kubernetes operations, with provider configuration and MCP-oriented workflows around the CLI.

open-sourceOpen SourceTelemetry