JSON Web Token vs Keycloak vs OAuth2
Overview
Share your Stack
Help developers discover the tools you use. Get visibility for your team's tech choices and contribute to the community's knowledge.
CLI (Node.js)
Manual
Detailed Comparison
It is an authorization framework that enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain access on its own behalf. | It is an Open Source Identity and Access Management For Modern Applications and Services. It adds authentication to applications and secure services with minimum fuss. No need to deal with storing users or authenticating users. It's all available out of the box. | JSON Web Token is an open standard that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. This information can be verified and trusted because it is digitally signed. |
| - | - | compact;self-contained |
Statistics | ||
GitHub Stars - | GitHub Stars - | GitHub Stars 3.7K |
GitHub Forks - | GitHub Forks - | GitHub Forks 374 |
Stacks 683 | Stacks 781 | Stacks 1.8K |
Followers 650 | Followers 1.3K | Followers 367 |
Votes 0 | Votes 102 | Votes 0 |
Pros & Cons | ||
No community feedback yet | Pros
Cons
| No community feedback yet |
What are some alternatives to OAuth2, Keycloak, JSON Web Token?
Auth0
A set of unified APIs and tools that instantly enables Single Sign On and user management to all your applications.
Stormpath
Stormpath is an authentication and user management service that helps development teams quickly and securely build web and mobile applications and services.
Devise
Devise is a flexible authentication solution for Rails based on Warden
Firebase Authentication
It provides backend services, easy-to-use SDKs, and ready-made UI libraries to authenticate users to your app. It supports authentication using passwords, phone numbers, popular federated identity providers like Google,
Amazon Cognito
You can create unique identities for your users through a number of public login providers (Amazon, Facebook, and Google) and also support unauthenticated guests. You can save app data locally on users’ devices allowing your applications to work even when the devices are offline.
WorkOS
Start selling to enterprise customers with just a few lines of code.
OAuth.io
OAuth is a protocol that aimed to provide a single secure recipe to manage authorizations. It is now used by almost every web application. However, 30+ different implementations coexist. OAuth.io fixes this massive problem by acting as a universal adapter, thanks to a robust API. With OAuth.io integrating OAuth takes minutes instead of hours or days.
OmniAuth
OmniAuth is a Ruby authentication framework aimed to abstract away the difficulties of working with various types of authentication providers. It is meant to be hooked up to just about any system, from social networks to enterprise systems to simple username and password authentication.
ORY Hydra
It is a self-managed server that secures access to your applications and APIs with OAuth 2.0 and OpenID Connect. It is OpenID Connect Certified and optimized for latency, high throughput, and low resource consumption.
Kinde
Simple, powerful authentication that you can integrate in minutes. Free your users from passwords with secure and frictionless one click sign up and sign in. Built from the ground up using the best in class security protocols available today.
