awesome-oauth-oidc
github.com/shyuan/awesome-oauth-oidc ↗Collect documentation related to OAuth 2.0 and OpenID Connect
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me mobile resources from awesome-oauth-oidc"
Installation instructions →What's inside
Article
Video
Client Library
- AppAuth (Android)Mobile
OpenID Certified OIDC/OAuth 2.0 SDK for Android, following RFC 8252 best practices
- AppAuth (iOS)Mobile
OpenID Certified OIDC/OAuth 2.0 SDK for iOS, following RFC 8252 best practices
- arcticJavaScript / TypeScript
OAuth 2.0 provider helpers for 50+ providers with minimal abstraction
- AuthlibPython
OAuth and OIDC client/server library for Flask, Django, FastAPI, and more
- DoorkeeperRuby
OAuth 2.0 provider for Ruby on Rails
- Duende IdentityServer.NET
OAuth 2.0 and OIDC framework for ASP.NET Core (free for dev/OSS)
Specification
- Assertion Framework for OAuth 2.0 Client Authentication and Authorization Grants (RFC 7521)IETF RFC
- Authentication Method Reference Values (RFC 8176)IETF RFC
- CAEP Specification 1.0Shared Signals
- Client-Cert HTTP Header Field (RFC 9440)IETF RFC
- Cross-Device Flows: Security Best Current Practice (draft-ietf-oauth-cross-device-security-15)IETF Draft
- Examples of Protecting Content Using JSON Object Signing and Encryption (JOSE) (RFC 7520)IETF RFC
Server Implementation
- Authelia
Authentication and SSO server with OIDC Identity Provider support (Go)
- Authentik
Self-hosted identity provider supporting OAuth 2.0, OIDC, SAML, SCIM, and LDAP (Python/Go)
- Casdoor
UI-first IAM platform supporting OAuth 2.0, OIDC, SAML, CAS, and more (Go)
- Dex
Federated OIDC provider by CNCF, widely used in the Kubernetes ecosystem (Go)
- Keycloak
Open-source IAM by Red Hat, supports OAuth 2.0, OIDC, and SAML 2.0 (Java)
- Logto
Developer-friendly, open-source Auth0 alternative with OIDC support (TypeScript)
Site
Book
- Getting Started with OAuth 2.0 - Programming Clients for Secure Web API Authorization and Authentication
Programming Clients for Secure Web API Authorization and Authentication
- Identity and Data Security for Web Development - Best Practices
Best Practices
- OAuth 2.0 – Getting Started in Web-API Security
- OAuth 2 in Action
- OpenID Connect入門 ―アプリケーション開発者のための実践技術解説
Tool
- Google OAuth 2.0 PlaygroundPlayground
- IAMDevBox JWT DecoderJWT
Browser-based JWT decoder with header/payload/signature analysis
- IAMDevBox PKCE GeneratorPlayground
Online PKCE code_verifier and code_challenge generator with S256/plain support
- jwt-cliJWT
Command-line JWT decoder/encoder (Rust)
- jwt.ioJWT
JWT debugger and library directory by Auth0
- jwt.msJWT
JWT decoder by Microsoft
Showing a sample of 163 resources. View the full list on GitHub →