{"id":29190717,"url":"https://github.com/janssenproject/jans","last_synced_at":"2026-06-06T02:09:48.018Z","repository":{"id":37084815,"uuid":"309721058","full_name":"JanssenProject/jans","owner":"JanssenProject","description":"The Janssen Project is a home for open source IAM components, featuring Auth Server (OAuth/OpenID), Agama low-code identity orchestration, and the Cedarling policy decision point. The \"Janssen Server\" distributions bundle IAM components under one control plane. ","archived":false,"fork":false,"pushed_at":"2026-05-26T08:17:57.000Z","size":1093738,"stargazers_count":632,"open_issues_count":401,"forks_count":170,"subscribers_count":30,"default_branch":"main","last_synced_at":"2026-05-26T08:20:00.328Z","etag":null,"topics":["access-management","api","iam","identity","kubernetes","oauth2","openid-connect","security","sso"],"latest_commit_sha":null,"homepage":"https://docs.jans.io","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/JanssenProject.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"docs/CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"docs/CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":".github/SECURITY.md","support":null,"governance":"docs/governance/charter.md","roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2020-11-03T15:00:37.000Z","updated_at":"2026-05-26T08:15:23.000Z","dependencies_parsed_at":"2023-09-22T15:39:39.885Z","dependency_job_id":"ff3f861e-c62e-4b99-865d-db7d4ed353a1","html_url":"https://github.com/JanssenProject/jans","commit_stats":null,"previous_names":[],"tags_count":634,"template":false,"template_full_name":null,"purl":"pkg:github/JanssenProject/jans","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JanssenProject%2Fjans","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JanssenProject%2Fjans/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JanssenProject%2Fjans/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JanssenProject%2Fjans/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/JanssenProject","download_url":"https://codeload.github.com/JanssenProject/jans/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JanssenProject%2Fjans/sbom","scorecard":{"id":5274,"data":{"date":"2025-08-14T07:17:44Z","repo":{"name":"github.com/JanssenProject/jans","commit":"83ac957d570c1b162f0da7caaf3d2ff8e7951019"},"scorecard":{"version":"v5.2.1","commit":"ab2f6e92482462fe66246d9e32f642855a691dc1"},"score":7.1,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#code-review"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#maintained"}},{"name":"Dependency-Update-Tool","score":10,"reason":"update tool detected","details":["Info: detected update tool: Dependabot: .github/dependabot.yml:1"],"documentation":{"short":"Determines if the project uses a dependency update tool.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#dependency-update-tool"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: .github/SECURITY.md:1","Info: Found linked content: .github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: .github/SECURITY.md:1","Info: Found text in security policy: .github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#security-policy"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#dangerous-workflow"}},{"name":"CII-Best-Practices","score":5,"reason":"badge detected: Passing","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#cii-best-practices"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: jobLevel 'contents' permission set to 'write': .github/workflows/build-docs.yml:38","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/build-nightly-build.yml:18","Info: jobLevel 'contents' permission set to 'read': .github/workflows/build-test.yml:51","Info: jobLevel 'contents' permission set to 'read': .github/workflows/build-test.yml:127","Info: jobLevel 'contents' permission set to 'read': .github/workflows/build-test.yml:191","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/ops-sync-tf.yml:18","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release-backport.yml:17","Info: jobLevel 'actions' permission set to 'read': .github/workflows/scan-codeql.yml:35","Info: jobLevel 'contents' permission set to 'read': .github/workflows/scan-codeql.yml:36","Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/scan-sonar.yml:88","Info: jobLevel 'contents' permission set to 'read': .github/workflows/scan-sonar.yml:87","Info: topLevel 'contents' permission set to 'read': .github/workflows/build-docker-image.yml:41","Info: topLevel 'contents' permission set to 'read': .github/workflows/build-docs.yml:33","Info: topLevel 'contents' permission set to 'read': .github/workflows/build-nightly-build.yml:13","Info: topLevel 'contents' permission set to 'read': .github/workflows/build-packages.yml:9","Info: topLevel 'contents' permission set to 'read': .github/workflows/build-test.yml:44","Info: topLevel 'contents' permission set to 'read': .github/workflows/lint-docs.yml:11","Info: topLevel 'contents' permission set to 'read': .github/workflows/lint-flak8.yml:19","Info: topLevel 'contents' permission set to 'read': .github/workflows/ops-docs.yml:10","Info: topLevel 'contents' permission set to 'read': .github/workflows/ops-label-pr-issues.yml:18","Info: topLevel 'contents' permission set to 'read': .github/workflows/ops-pr-ref-issue.yml:19","Warn: topLevel 'contents' permission set to 'write': .github/workflows/ops-sbom.yml:10","Info: topLevel 'contents' permission set to 'read': .github/workflows/ops-sync-tf.yml:13","Info: topLevel 'contents' permission set to 'read': .github/workflows/release-backport.yml:7","Info: topLevel 'pull-requests' permission set to 'read': .github/workflows/release-backport.yml:8","Info: topLevel 'contents' permission set to 'read': .github/workflows/release.yaml:5","Info: topLevel 'contents' permission set to 'read': .github/workflows/sanitary-github-cache.yml:8","Info: topLevel 'contents' permission set to 'read': .github/workflows/sanitary-workflow-runs.yml:7","Warn: topLevel 'actions' permission set to 'write': .github/workflows/sanitary-workflow-runs.yml:8","Info: topLevel 'contents' permission set to 'read': .github/workflows/scan-codeql.yml:30","Info: topLevel 'contents' permission set to 'read': .github/workflows/scan-dependency.yml:13","Info: topLevel 'contents' permission set to 'read': .github/workflows/scan-sonar.yml:59","Info: topLevel permissions set to 'read-all': .github/workflows/security-scorecard.yml:11","Info: topLevel 'contents' permission set to 'read': .github/workflows/test-cedarling.yml:10","Info: topLevel 'contents' permission set to 'read': .github/workflows/test-jans-pycloudlib.yml:23","Info: topLevel 'contents' permission set to 'read': .github/workflows/test-microk8s.yml:22"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":8,"reason":"binaries present in source code","details":["Warn: binary detected: demos/jans-chip/android/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: jans-cedarling/bindings/cedarling_uniffi/androidApp/gradle/wrapper/gradle-wrapper.jar:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#binary-artifacts"}},{"name":"Signed-Releases","score":8,"reason":"5 out of the last 5 releases have a total of 5 signed artifacts.","details":["Info: signed release artifact: cedarling-krakend-amd64-builder-2.9.0-0.0.0.so.asc: https://github.com/JanssenProject/jans/releases/tag/nightly","Info: signed release artifact: cedarling_go-1.9.0.dll.asc: https://github.com/JanssenProject/jans/releases/tag/v1.9.0","Info: signed release artifact: cedarling_go-1.8.0.dll.asc: https://github.com/JanssenProject/jans/releases/tag/v1.8.0","Info: signed release artifact: cedarling_go-1.7.0.dll.asc: https://github.com/JanssenProject/jans/releases/tag/v1.7.0","Info: signed release artifact: cedarling-krakend-amd64-builder-2.9.0-1.6.0.so.asc: https://github.com/JanssenProject/jans/releases/tag/v1.6.0","Warn: release artifact nightly does not have provenance: https://api.github.com/repos/JanssenProject/jans/releases/239831247","Warn: release artifact v1.9.0 does not have provenance: https://api.github.com/repos/JanssenProject/jans/releases/235182175","Warn: release artifact v1.8.0 does not have provenance: https://api.github.com/repos/JanssenProject/jans/releases/227905769","Warn: release artifact v1.7.0 does not have provenance: https://api.github.com/repos/JanssenProject/jans/releases/219744865","Warn: release artifact v1.6.0 does not have provenance: https://api.github.com/repos/JanssenProject/jans/releases/217326535"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#signed-releases"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/build-docker-image.yml:44"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#packaging"}},{"name":"Pinned-Dependencies","score":5,"reason":"dependency not pinned by hash detected -- score normalized to 5","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-packages.yml:390: update your workflow using https://app.stepsecurity.io/secureworkflow/JanssenProject/jans/build-packages.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build-packages.yml:541: update your workflow using https://app.stepsecurity.io/secureworkflow/JanssenProject/jans/build-packages.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ops-sbom.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/JanssenProject/jans/ops-sbom.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-cedarling.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/JanssenProject/jans/test-cedarling.yml/main?enable=pin","Warn: containerImage not pinned by hash: docker-jans-all-in-one/Dockerfile:27","Warn: containerImage not pinned by hash: docker-jans-all-in-one/Dockerfile:29","Warn: containerImage not pinned by hash: docker-jans-all-in-one/Dockerfile:31","Warn: containerImage not pinned by hash: docker-jans-all-in-one/Dockerfile:33","Warn: containerImage not pinned by hash: docker-jans-all-in-one/Dockerfile:35","Warn: containerImage not pinned by hash: docker-jans-all-in-one/Dockerfile:37","Warn: containerImage not pinned by hash: docker-jans-all-in-one/Dockerfile:39","Warn: containerImage not pinned by hash: docker-jans-all-in-one/Dockerfile:41","Warn: containerImage not pinned by hash: jans-cedarling/flask-sidecar/Dockerfile:1: pin your Docker image by updating python:3.10.16-slim-bookworm to python:3.10.16-slim-bookworm@sha256:f9fd9a142c9e3bc54d906053b756eb7e7e386ee1cf784d82c251cf640c502512","Warn: pipCommand not pinned by hash: demos/benchmarking/docker-jans-loadtesting-jmeter/Dockerfile:51-53","Warn: pipCommand not pinned by hash: demos/benchmarking/docker-jans-loadtesting-jmeter/Dockerfile:51-53","Warn: pipCommand not pinned by hash: docker-jans-all-in-one/Dockerfile:81-85","Warn: pipCommand not pinned by hash: docker-jans-all-in-one/Dockerfile:81-85","Warn: downloadThenRun not pinned by hash: docker-jans-auth-server/Dockerfile:34-37","Warn: pipCommand not pinned by hash: docker-jans-auth-server/Dockerfile:40-44","Warn: pipCommand not pinned by hash: docker-jans-auth-server/Dockerfile:128-132","Warn: pipCommand not pinned by hash: docker-jans-auth-server/Dockerfile:128-132","Warn: pipCommand not pinned by hash: docker-jans-casa/Dockerfile:95-99","Warn: pipCommand not pinned by hash: docker-jans-casa/Dockerfile:95-99","Warn: pipCommand not pinned by hash: docker-jans-cloudtools/Dockerfile:65-69","Warn: pipCommand not pinned by hash: docker-jans-cloudtools/Dockerfile:65-69","Warn: downloadThenRun not pinned by hash: docker-jans-config-api/Dockerfile:34-37","Warn: pipCommand not pinned by hash: docker-jans-config-api/Dockerfile:119-123","Warn: pipCommand not pinned by hash: docker-jans-config-api/Dockerfile:119-123","Warn: pipCommand not pinned by hash: docker-jans-configurator/Dockerfile:46-50","Warn: pipCommand not pinned by hash: docker-jans-configurator/Dockerfile:46-50","Warn: downloadThenRun not pinned by hash: docker-jans-fido2/Dockerfile:34-37","Warn: pipCommand not pinned by hash: docker-jans-fido2/Dockerfile:108-112","Warn: pipCommand not pinned by hash: docker-jans-fido2/Dockerfile:108-112","Warn: downloadThenRun not pinned by hash: docker-jans-keycloak-link/Dockerfile:34-37","Warn: pipCommand not pinned by hash: docker-jans-keycloak-link/Dockerfile:98-102","Warn: pipCommand not pinned by hash: docker-jans-keycloak-link/Dockerfile:98-102","Warn: downloadThenRun not pinned by hash: docker-jans-link/Dockerfile:34-37","Warn: pipCommand not pinned by hash: docker-jans-link/Dockerfile:98-102","Warn: pipCommand not pinned by hash: docker-jans-link/Dockerfile:98-102","Warn: pipCommand not pinned by hash: docker-jans-monolith/Dockerfile:18-25","Warn: pipCommand not pinned by hash: docker-jans-persistence-loader/Dockerfile:60-64","Warn: pipCommand not pinned by hash: docker-jans-persistence-loader/Dockerfile:60-64","Warn: pipCommand not pinned by hash: docker-jans-saml/Dockerfile:73-77","Warn: pipCommand not pinned by hash: docker-jans-saml/Dockerfile:73-77","Warn: downloadThenRun not pinned by hash: docker-jans-scim/Dockerfile:34-37","Warn: pipCommand not pinned by hash: docker-jans-scim/Dockerfile:101-105","Warn: pipCommand not pinned by hash: docker-jans-scim/Dockerfile:101-105","Warn: pipCommand not pinned by hash: jans-cedarling/flask-sidecar/Dockerfile:28-29","Warn: downloadThenRun not pinned by hash: automation/startjanssendemo.sh:58","Warn: pipCommand not pinned by hash: automation/startjanssenmonolithdemo.sh:65","Warn: downloadThenRun not pinned by hash: docker-jans-monolith/scripts/entrypoint.sh:71","Warn: pipCommand not pinned by hash: .github/workflows/build-docker-image.yml:94","Warn: pipCommand not pinned by hash: .github/workflows/build-docker-image.yml:95","Warn: pipCommand not pinned by hash: .github/workflows/build-docker-image.yml:96","Warn: pipCommand not pinned by hash: .github/workflows/build-docker-image.yml:178","Warn: pipCommand not pinned by hash: .github/workflows/build-docker-image.yml:179","Warn: pipCommand not pinned by hash: .github/workflows/build-docker-image.yml:180","Warn: downloadThenRun not pinned by hash: .github/workflows/build-docs.yml:70","Warn: chocoCommand not pinned by hash: .github/workflows/build-packages.yml:589","Warn: pipCommand not pinned by hash: .github/workflows/build-packages.yml:219","Warn: pipCommand not pinned by hash: .github/workflows/build-packages.yml:220","Warn: pipCommand not pinned by hash: .github/workflows/build-packages.yml:232","Warn: pipCommand not pinned by hash: .github/workflows/build-packages.yml:233","Warn: npmCommand not pinned by hash: .github/workflows/build-packages.yml:311","Warn: npmCommand not pinned by hash: .github/workflows/build-packages.yml:312","Warn: goCommand not pinned by hash: .github/workflows/build-test.yml:289","Warn: pipCommand not pinned by hash: .github/workflows/lint-flak8.yml:46","Warn: pipCommand not pinned by hash: .github/workflows/lint-flak8.yml:47","Warn: pipCommand not pinned by hash: .github/workflows/lint-flak8.yml:48","Warn: pipCommand not pinned by hash: .github/workflows/ops-label-pr-issues.yml:42","Warn: pipCommand not pinned by hash: .github/workflows/ops-label-pr-issues.yml:43","Warn: pipCommand not pinned by hash: .github/workflows/ops-label-pr-issues.yml:44","Warn: pipCommand not pinned by hash: .github/workflows/test-cedarling.yml:74","Warn: pipCommand not pinned by hash: .github/workflows/test-cedarling.yml:75","Warn: downloadThenRun not pinned by hash: .github/workflows/test-cedarling.yml:44","Warn: pipCommand not pinned by hash: .github/workflows/test-jans-pycloudlib.yml:44","Warn: pipCommand not pinned by hash: .github/workflows/test-jans-pycloudlib.yml:45","Info:  61 out of  65 GitHub-owned GitHubAction dependencies pinned","Info:  68 out of  68 third-party GitHubAction dependencies pinned","Info:  15 out of  24 containerImage dependencies pinned","Info:   0 out of  50 pipCommand dependencies pinned","Info:   0 out of  10 downloadThenRun dependencies pinned","Info:   0 out of   1 chocoCommand dependencies pinned","Info:   0 out of   2 npmCommand dependencies pinned","Info:   0 out of   1 goCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#pinned-dependencies"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#license"}},{"name":"SAST","score":10,"reason":"SAST tool detected","details":["Info: SAST configuration detected: CodeQL","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Info: SAST configuration detected: Sonar","Warn: 12 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#sast"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#fuzzing"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#branch-protection"}},{"name":"CI-Tests","score":3,"reason":"9 out of 30 merged PRs checked by a CI test -- score normalized to 3","details":null,"documentation":{"short":"Determines if the project runs tests before pull requests are merged.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#ci-tests"}},{"name":"Contributors","score":10,"reason":"project has 13 contributing companies or organizations","details":["Info: found contributions from: Big0one, GluuFederation, JanssenProject, automation @gluufederation @janssenproject, cloud architect  director of engineering @gluufederation @janssenproject, gluu, gluufederation, gudeg-united, id-python, moabu automation @gluufederation @janssenproject, open-craft, opencraft, smansoft"],"documentation":{"short":"Determines if the project has a set of contributors from multiple organizations (e.g., companies).","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#contributors"}},{"name":"Vulnerabilities","score":0,"reason":"11 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-48p4-8xcf-vxj5","Warn: Project is vulnerable to: GHSA-pq67-6m6q-mj2v","Warn: Project is vulnerable to: GHSA-xwmg-2g98-w7v9","Warn: Project is vulnerable to: GHSA-4grg-w6v8-c28g","Warn: Project is vulnerable to: GHSA-43qf-4rqw-9q2g","Warn: Project is vulnerable to: GHSA-7rxf-gvfg-47g4","Warn: Project is vulnerable to: GHSA-8vgw-p6qm-5gr7","Warn: Project is vulnerable to: GHSA-hc5x-x2vx-497g","Warn: Project is vulnerable to: GHSA-cpwx-vrp4-4pq7","Warn: Project is vulnerable to: PYSEC-2025-49 / GHSA-5rjg-fvgr-3xxf","Warn: Project is vulnerable to: GO-2025-3754 / GHSA-2x5j-vhc8-9cwm"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-14T13:24:37.002Z","repository_id":37084815,"created_at":"2025-08-14T13:24:37.002Z","updated_at":"2025-08-14T13:24:37.002Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33677261,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-05-30T02:00:06.278Z","response_time":92,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["access-management","api","iam","identity","kubernetes","oauth2","openid-connect","security","sso"],"created_at":"2025-07-02T00:11:01.345Z","updated_at":"2026-05-30T02:01:40.348Z","avatar_url":"https://github.com/JanssenProject.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003ch1 align=\"center\"\u003e\u003cimg src=\"https://github.com/JanssenProject/jans/blob/main/docs/assets/logo/janssen_project_transparent_630px_182px.png\" alt=\"Janssen Project - Open Source Digital Identity Infrastructure Software\"\u003e\u003c/h1\u003e\n\n## Welcome to the Janssen Project\n\n[![The Linux Foundation](https://img.shields.io/badge/Member-The%20Linux%20Foundation-blue?style=flat-square)](https://www.linuxfoundation.org/press/press-release/the-janssen-project-takes-on-worlds-most-demanding-digital-trust-challenges-at-linux-foundation)\n[![DPG Badge](https://img.shields.io/badge/Verified-DPG-3333AB?logo=data:image/svg%2bxml;base64,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)](https://digitalpublicgoods.net/r/janssen-project)\n\nJanssen is a self-funded project chartered directly under the Linux Foundation\nto foster the development of enterprise digital identity and access management\ninfrastructure. As the lead Contributors, the [Gluu team](https://gluu.org) drives the\npriorities on a day-to-day basis, governed and guided by the Janssen community\nTechnical Steering Committee.\n\nThere are several Janssen Components in different stages of development, from demos\nto stable releases. Janssen Project software has batteries included. You\nwill find binaries, cloud-native deployment assets, documentation and more--\nenabling you to build a product or mission-critical cybersecurity service with\nJanssen software.\n\nIf your enterprise needs Janssen for a production deployment, Gluu offers a\ncommercial distribution of Janssen Project Components called\n[Gluu Flex](https://gluu.org/flex) and [Gluu Solo](https://gluu.org/solo).\n\n----\n\n**Releases**: [Latest](https://github.com/JanssenProject/jans/releases/latest) | [All](https://github.com/JanssenProject/jans/releases)\n\n**Get Help**: [Discussions](https://github.com/JanssenProject/jans/discussions) | [Chat](https://chat.gluu.org/join/wnsm743ho6byd57r4he2yihn/)\n\n**Docs**: [Documentation](https://docs.jans.io/)\n\n**Contribute**: [Contribution Guide](https://docs.jans.io/head/CONTRIBUTING/) | [Community Docs](https://docs.jans.io/head/governance/charter/) | [Developer Guides](https://docs.jans.io/head/CODE_OF_CONDUCT/)\n\n**Social**: [Linkedin](https://www.linkedin.com/company/janssen-project) | [YouTube](https://www.youtube.com/@JanssenProject)\n\n**Resources to learn more**: [Gluu Academy](https://learn.gluu.org/)\n\n[![Artifact Hub](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/janssen-auth-server)](https://artifacthub.io/packages/search?repo=janssen-auth-server)\n[![OpenSSF Scorecard](https://api.scorecard.dev/projects/github.com/JanssenProject/jans/badge)](https://scorecard.dev/viewer/?uri=github.com/JanssenProject/jans)\n[![OpenSSF Best Practices](https://www.bestpractices.dev/projects/4353/badge)](https://www.bestpractices.dev/projects/4353)\n[![Hex.pm](https://img.shields.io/hexpm/l/plug)](./LICENSE)\n[![GitHub contributors](https://img.shields.io/github/contributors/janssenproject/jans)](#community)\n[![Conventional Commits](https://img.shields.io/badge/Conventional%20Commits-1.0.0-%23FE5196?logo=conventionalcommits\u0026logoColor=white)](https://conventionalcommits.org)\n\n----\n\n## Janssen Components\n\nThe table below lists components of the Janssen Project and their\n[maturity stages](https://docs.jans.io/stable/CONTRIBUTING/#project-maturity-stages).\n\n| Component                                    | Description                                                                                                                                                                                                                                 | Lifecycle Stage                                                  |\n|:---------------------------------------------|:--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:-----------------------------------------------------------------|\n| **[Jans Auth Server](jans-auth-server)**     | A complete OAuth Authorization Server and a [certified](https://openid.net/certification/) OpenID Connect Provider written in Java. It's the upstream open-source core of [Gluu Flex](https://gluu.org/flex).                                     | ![Graduated](https://img.shields.io/badge/Graduated-%2301ba77)   |\n| **[Agama](agama)**                           | Agama offers an interoperable way to design authentication flows, coded in a DSL purpose-built for writing identity journeys.                                                                                                               | ![Graduated](https://img.shields.io/badge/Graduated-%2301ba77)   |\n| **[Jans FIDO](jans-fido2)**                  | Enables end-users to enroll and authenticate with passkeys and other FIDO authenticators.                                                                                                                                                   | ![Graduated](https://img.shields.io/badge/Graduated-%2301ba77)   |\n| **[Jans SCIM](jans-scim)**                   | [SCIM](http://www.simplecloud.info/) JSON/REST [API](https://docs.jans.io/head/admin/reference/openapi/) for user management, including associated FIDO devices.                                                                            | ![Graduated](https://img.shields.io/badge/Graduated-%2301ba77)   |\n| **[Jans Config API](jans-config-api)**       | RESTful APIs manage configuration for all Janssen components.                                                                                                                                                                                           | ![Graduated](https://img.shields.io/badge/Graduated-%2301ba77)   |\n| **[Text UI (\"TUI\")](jans-cli-tui)**          | User interface accessible from command line. TUI is text-based interactive configuration tool that leverages config-API to configure Janssen Server modules                                                                                                                                                 | ![Graduated](https://img.shields.io/badge/Graduated-%2301ba77)   |\n| **[Jans CLI](jans-cli-tui)**                 | Command line configuration tools to help you correctly call the Config API.                                                                                                                                                 | ![Graduated](https://img.shields.io/badge/Graduated-%2301ba77)   |\n| **[Jans Casa](jans-casa)**                   | Jans Casa is a self-service web portal for end-users to manage authentication and authorization preferences for their account in the Janssen Server                                                                                         | ![Graduated](https://img.shields.io/badge/Graduated-%2301ba77)   |\n| **[Jans Cedarling](jans-cedarling)**         | Cedarling is an embeddable stateful Policy Decision Point for authorization requests. In simple terms, the Cedarling returns the answer: should the application allow this action on this resource given these JWT tokens. It is written in Rust with bindings to WASM, iOS, Android, and Python.                                                                | ![Incubating](https://img.shields.io/badge/Incubating-%23f79307) |\n| **[Jans Lock](jans-lock)**                   | An enterprise authorization solution featuring the Cedarling, a stateless PDP and the Lock Server which centralizes audit logs and configuration.                                                                                           | ![Incubating](https://img.shields.io/badge/Incubating-%23f79307) |\n| **[Janssen Tarp](demos/janssen-tarp)**       | An OpenID Connect RP test website that runs as a browser plugin in Chrome or Firefox.                                                                                                                                                       | ![Incubating](https://img.shields.io/badge/Incubating-%23f79307) |\n| **[Jans Chip](demos/jans-chip)**             | Sample iOS and Android mobile applications that implement the full OAuth and FIDO security stack for app integrity, client constrained access tokens, and user presence.                                                                    | ![Demo](https://img.shields.io/badge/Demo-%23368af7)             |\n| **[Jans LDAP Link](jans-link)**              | a group of components that provide synchronization services to update the Janssen User Store from an external authoritative LDAP data source                                                                                               | ![Sunsetting](https://img.shields.io/badge/Sunsetting-%23b02a37) |\n\n## Installation\n\nYou can install the Janssen federation stack in a Kubernetes cluster or as a single VM.\n\nDevelopment environments: [Quick Start](https://docs.jans.io/head/janssen-server/install/docker-install/quick-start/)\n| [Local K8S](https://docs.jans.io/head/janssen-server/install/helm-install/local/) | [VM install](https://docs.jans.io/head/janssen-server/install/vm-install/vm-requirements/)\n\nProduction deployments: [Amazon EKS](https://docs.jans.io/head/janssen-server/install/helm-install/amazon-eks/) | [Microsoft Azure AKS](https://docs.jans.io/head/janssen-server/install/helm-install/microsoft-azure/) | [Google GKE](https://docs.jans.io/head/janssen-server/install/helm-install/google-gke/) | [Rancher](https://docs.jans.io/head/janssen-server/install/helm-install/rancher/)\n\nCheck out the\n[Janssen Documentation](https://docs.jans.io/head/janssen-server/install/)\nfor details.\n\n## Community\n\nA BIG thanks to all the amazing contributors!! 👏 👏\n\nBuilding a diverse and inclusive community is an important goal. Please let us know what we\ncan do to make you feel more welcome, no matter what you want to contribute.\n\n### Code of Conduct / Contribution Guidelines / Security\n\n* [Janssen code of conduct](https://docs.jans.io/head/CODE_OF_CONDUCT/) ensures\nthat the Janssen community is a welcoming place for everyone.\n\n* Start with the [Contribution Guide](https://docs.jans.io/head/CONTRIBUTING/)\nfor an introduction on the Janssen development lifecycle.\n\n* If you think you found a security vulnerability, please refrain from posting\nit publicly on the forums, the chat, or GitHub. Instead, email us at\n`security@jans.io`. Refer to [Janssen Security Policy](.github/SECURITY.md)\n\n### Governance\n\nJanssen is a self-funded Linux Foundation project, governed according to the\n[charter](https://docs.jans.io/head/governance/charter/). Technical oversight\nof the project is the responsibility of the Technical Steering Committee (\"TSC\").\nDay-to-day decision-making is in the hands of the Contributors. The TSC helps to\nguide the direction of the project and to improve the quality and security of\nthe development process.\n\n### Support\n\nIf you find a bug in the Janssen project, would like to suggest a new feature, or\nhave a \"howto\" question, please post on\n[GitHub Discussions](https://github.com/JanssenProject/jans/discussions), which\nis the main channel for community support. There is also a\n[community chat on Zulip](https://chat.gluu.org/join/wnsm743ho6byd57r4he2yihn/).\n\n### Releases\n\nCheck out the [latest release]((https://github.com/JanssenProject/jans/releases/latest)) of the Janssen Project for new features and updates.\n\n### Janssen History\n\nIn 2020, [Gluu](https://gluu.org) decided to give contributors a role in the\ngovernance and collaborated with the Linux Foundation to charter the Janssen\nProject. The initial software contribution for the Janssen Project was a fork of\nthe Gluu Server version 4. Subsequently, the Janssen Project developers added a new\nconfiguration control plane, tools, demos, documentation, packaging and\ndeployment assets.\n\n### Why the name Janssen?\n\nPigeons (or doves...) are universally regarded as a symbol of peace--which\nwe need more of today. But pigeons are also really fast,\ncapable of flying 1000 kilometers in a single day, powered by\na handful of seeds. The **Janssen brothers of Arendonk** in Belgium bred the\nworld's fastest family of racing pigeons. Janssen racing pigeons revolutionized\nthe sport. The Janssen Project seeks to revolutionize how open-source\ndigital identity scales in the clouds.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjanssenproject%2Fjans","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjanssenproject%2Fjans","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjanssenproject%2Fjans/lists"}