加载中
正在获取最新内容,请稍候...
Authelia - 高安全性的Web应用SSO与MFA门户
Authelia is a robust, open-source Single Sign-On (SSO) and Multi-Factor Authentication (MFA) server providing a highly secure portal for your applications. It acts as a companion for reverse proxies, adding an extra layer of security and centralized access management.
Go
Added on 2025年5月13日23,741
Stars1,218
ForksGo
LanguageProject Introduction
Summary
Authelia is an open-source authentication and authorization server designed to secure web applications via a reverse proxy. It supports Single Sign-On (SSO) and a variety of Multi-Factor Authentication (MFA) methods, providing a flexible and scalable solution for implementing robust access control.
Problem Solved
Managing user authentication and authorization across multiple web applications can be complex and inconsistent. Implementing strong security measures like MFA for each app individually is often impractical. Authelia centralizes this by providing a unified authentication layer in front of your applications, enforcing strong security policies like MFA.
Core Features
Multi-Factor Authentication (MFA)
Requires users to authenticate multiple times using different factors, significantly reducing the risk of unauthorized access.
Single Sign-On (SSO)
Allows users to log in once to access multiple protected applications, improving user experience and reducing password fatigue.
Reverse Proxy Integration
Integrates seamlessly with popular reverse proxies like Nginx, Traefik, Caddy, and HAProxy to protect any web application.
Fine-Grained Authorization
Enables granular access control policies based on users, groups, domains, and IP addresses.
Tech Stack
Go
Docker
Kubernetes
PostgreSQL
SQLite
LDAP
Prometheus
使用场景
Authelia can be deployed in various scenarios to enhance the security and usability of web applications.
场景一:保护个人或家庭自托管服务
Details
Protecting personal dashboards, media servers, or other internal tools hosted at home or on a VPS with a unified login and MFA.
User Value
Provides a consistent and secure way to access all your self-hosted applications, eliminating the need for separate logins and adding MFA for critical services.
场景二:企业内部应用统一认证与授权
Details
Implementing SSO and MFA for internal company web applications (e.g., internal wikis, monitoring dashboards, reporting tools) to improve security and compliance.
User Value
Centralizes authentication management, simplifies user access to internal tools, and enforces strong security policies like FIDO2/WebAuthn or TOTP MFA.
场景三:面向外部用户的安全访问网关
Details
Providing secure access for external partners or customers to specific applications while restricting access to sensitive data.
User Value
Controls exactly who can access which application based on predefined policies, ensuring external users only have access to necessary resources.
Recommended Projects
You might be interested in these projects
solana-labssolana
Explore Solana: A high-performance, permissionless blockchain designed for decentralized applications and crypto marketplaces at web scale.
Rust
141014806
tensorzerotensorzero
TensorZero creates a feedback loop for optimizing LLM applications — turning production data into smarter, faster, and cheaper models.
Rust
4026265
spring-projectsspring-boot
Build production-ready, Spring-powered applications and services with minimal configuration using Spring Boot's auto-configuration, embedded servers, and starter dependencies.
Java
7709641162