Authelia

Auth & SSO

Authelia is an open-source authentication and authorization server and portal designed to provide identity and access management (IAM) for web applications. It offers multi-factor authentication (MFA) and single sign-on (SSO) capabilities, acting as a companion for common reverse proxies to enhance security and user experience.

• Lightweight: With a compressed container size smaller than 20 megabytes and memory usage under 30 megabytes, Authelia is highly efficient.
• Blazing Fast: Written in Go and React, it completes authorization policies and backend tasks in milliseconds, with login portal loading times around 100 milliseconds.
• Efficient: Minimal idle processor usage and low active usage in small business environments.
• Security by Design: Security is a core consideration in Authelia's design process.
• Login Regulation: Prevent brute force attacks by limiting the number of login attempts before locking the user account.
• Password Reset: Users can reset their LDAP or internal passwords via email validation directly from the web interface.
• Single Sign-On: Users only need to log in once to access multiple web applications via session cookies, OpenID Connect 1.0, or Trusted Headers.
• Authorization Policies: Define granular access control policies for users and groups to specific resources or domains.
• Identity Validation: Users without a second-factor device must validate their identity via email, reducing the risk of exploitation.
• Scalability: Designed for high availability, it supports multiple parallel containers on platforms like Kubernetes.
• Multi-Factor Authentication: Supports various second-factor methods, including One Time Passwords, Mobile Push Notifications, and WebAuthn.
• Intuitive User Interface: The login portal is straightforward, offering a transparent workflow for users.

Authelia is a robust solution for enhancing the security and usability of web applications through advanced IAM features.