A cloud native Identity & Access Proxy
Why people like Oathkeeper
Add a one-liner



A cloud native Identity & Access Proxy (IAP) which authenticates and authorizes incoming HTTP requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.

Oathkeeper's Features
  • Identify the user and provide the user session to API backends
  • Restrict access to certain resources based on a set of rules
  • Transform access credentials (e.g. OAuth2 Access Tokens, SAML Assertions, ...) to a format (e.g. JSON Web Token, Plaintext, Basic Authorization, ...) consumable by your API services