{"id":35174239,"url":"https://github.com/skygenesisenterprise/aether-realm","last_synced_at":"2026-05-18T12:08:57.752Z","repository":{"id":324158737,"uuid":"1093699141","full_name":"skygenesisenterprise/aether-realm","owner":"skygenesisenterprise","description":"Open Source Identity and Access Management For Modern Applications and Services","archived":false,"fork":false,"pushed_at":"2025-11-14T05:04:44.000Z","size":41977,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-04-05T20:39:49.242Z","etag":null,"topics":["ldap","oidc","saml","sso"],"latest_commit_sha":null,"homepage":"https://skygenesisenterprise.com","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/skygenesisenterprise.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":".github/CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":".github/SUPPORT.md","governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null},"funding":{"patreon":null,"open_collective":"skygenesisenterprise","ko_fi":null,"tidelift":null,"community_bridge":null,"liberapay":null,"issuehunt":null,"otechie":null,"lfx_crowdfunding":null,"custom":null}},"created_at":"2025-11-10T18:08:39.000Z","updated_at":"2025-11-14T05:04:47.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/skygenesisenterprise/aether-realm","commit_stats":null,"previous_names":["skygenesisenterprise/aether-realm"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/skygenesisenterprise/aether-realm","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skygenesisenterprise%2Faether-realm","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skygenesisenterprise%2Faether-realm/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skygenesisenterprise%2Faether-realm/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skygenesisenterprise%2Faether-realm/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/skygenesisenterprise","download_url":"https://codeload.github.com/skygenesisenterprise/aether-realm/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/skygenesisenterprise%2Faether-realm/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33177360,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-18T09:27:30.708Z","status":"ssl_error","status_checked_at":"2026-05-18T09:27:28.300Z","response_time":71,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ldap","oidc","saml","sso"],"created_at":"2025-12-28T21:51:00.059Z","updated_at":"2026-05-18T12:08:57.720Z","avatar_url":"https://github.com/skygenesisenterprise.png","language":"Java","funding_links":["https://opencollective.com/skygenesisenterprise"],"categories":[],"sub_categories":[],"readme":"\u003cdiv align=\"center\"\u003e\n\n# Aether Realm\n\n[![Build Status](https://img.shields.io/badge/build-passing-brightgreen.svg)](https://github.com/your-org/aether-realm)\n[![License](https://img.shields.io/badge/license-Apache%202.0-blue.svg)](LICENSE)\n[![Java Version](https://img.shields.io/badge/java-17+-orange.svg)](https://openjdk.java.net/)\n[![Docker](https://img.shields.io/badge/docker-ready-blue.svg)](docker-compose.yml)\n\n\u003e **Open Source Identity and Access Management For Modern Applications and Services**\n\nAether Realm is a comprehensive identity and access management solution built on Keycloak, providing secure authentication, authorization, and user management capabilities for modern applications and microservices architectures.\n\n\u003c/div\u003e\n\n## 🚀 Features\n\n### Core Identity \u0026 Access Management\n- **Single Sign-On (SSO)** - Seamless authentication across multiple applications\n- **Multi-Factor Authentication (MFA)** - Enhanced security with TOTP, WebAuthn, and more\n- **Social Login Integration** - Support for Google, GitHub, Facebook, and 20+ identity providers\n- **User Federation** - LDAP, Active Directory, and Kerberos integration\n- **Fine-Grained Authorization** - Attribute-based and role-based access control (ABAC/RBAC)\n\n### Enterprise Features\n- **High Availability \u0026 Clustering** - Built-in support for distributed deployments\n- **Multi-Tenancy** - Isolated realms for different organizations or applications\n- **Audit \u0026 Compliance** - Comprehensive logging and audit trails\n- **Custom Themes \u0026 Branding** - Fully customizable user interface\n- **RESTful APIs** - Complete admin and client APIs for automation\n\n### Developer Experience\n- **OpenID Connect (OIDC)** \u0026 **OAuth 2.0** - Industry-standard protocols\n- **SAML 2.0** - Enterprise federation support\n- **Client Libraries** - SDKs for Java, JavaScript, Python, and more\n- **Docker \u0026 Kubernetes Ready** - Container-native deployment\n- **Extensible Architecture** - Custom providers and extensions\n\n## 🏗️ Architecture\n\nAether Realm is built on a modern, cloud-native stack:\n\n```\n┌─────────────────┐    ┌─────────────────┐    ┌─────────────────┐\n│   Web Apps      │    │   Mobile Apps   │    │   APIs/Services │\n└─────────────────┘    └─────────────────┘    └─────────────────┘\n         │                       │                       │\n         └───────────────────────┼───────────────────────┘\n                                 │\n                    ┌─────────────────┐\n                    │  Aether Realm   │\n                    │   (Keycloak)    │\n                    └─────────────────┘\n                                 │\n         ┌───────────────────────┼───────────────────────┐\n         │                       │                       │\n┌─────────────────┐    ┌─────────────────┐    ┌─────────────────┐\n│   PostgreSQL    │    │   Infinispan    │    │   LDAP/AD       │\n│   (Database)    │    │   (Cache)       │    │   (User Store)  │\n└─────────────────┘    └─────────────────┘    └─────────────────┘\n```\n\n## 🚀 Quick Start\n\n### Prerequisites\n- **Java 17+** or **Docker \u0026 Docker Compose**\n- **4GB+ RAM** recommended\n- **Port 8080** available\n\n### Option 1: Docker (Recommended)\n\n```bash\n# Clone the repository\ngit clone https://github.com/skygenesisenterprise/aether-realm.git\ncd aether-realm\n\n# Start with default configuration\ndocker-compose up -d\n\n# Access the application\nopen http://localhost:8080\n```\n\n**Default Credentials:**\n- **Admin Console**: http://localhost:8080/admin\n- **Username**: `admin`\n- **Password**: `admin123`\n\n### Option 2: Native Installation\n\n```bash\n# Build the application\n./mvnw clean install -DskipTests\n\n# Start the server\n./quarkus/runtime/target/quarkus-app/quarkus-run.jar\n```\n\n## 🐳 Docker Configuration\n\n### Development Setup\n```bash\n# Basic development setup\ndocker-compose up -d\n\n# With PostgreSQL database\ndocker-compose --profile postgres up -d\n\n# With Redis cache\ndocker-compose --profile redis up -d\n\n# With Infinispan clustering\ndocker-compose --profile infinispan up -d\n\n# All services (production-like)\ndocker-compose --profile postgres --profile redis --profile infinispan up -d\n```\n\n### Environment Variables\n\n| Variable | Default | Description |\n|----------|---------|-------------|\n| `KC_BOOTSTRAP_ADMIN_USERNAME` | `admin` | Initial admin username |\n| `KC_BOOTSTRAP_ADMIN_PASSWORD` | `admin123` | Initial admin password |\n| `KC_HOSTNAME` | `localhost` | Server hostname |\n| `KC_DB` | `dev-file` | Database type (`dev-file`, `postgres`, `mysql`) |\n| `KC_HTTP_ENABLED` | `true` | Enable HTTP endpoint |\n| `KC_CACHE` | `local` | Cache type (`local`, `redis`, `infinispan`) |\n| `JAVA_OPTS` | `-Xmx1024m -Xms512m` | JVM configuration |\n\n## 📚 Documentation\n\n### User Guides\n- [Getting Started](docs/getting-started.md)\n- [Admin Console Guide](docs/admin-console.md)\n- [User Management](docs/user-management.md)\n- [Client Configuration](docs/client-configuration.md)\n\n### Developer Resources\n- [API Documentation](docs/api.md)\n- [Protocol Support](docs/protocols.md)\n- [Custom Providers](docs/custom-providers.md)\n- [Theme Development](docs/theme-development.md)\n\n### Operations\n- [Deployment Guide](docs/deployment.md)\n- [Clustering \u0026 High Availability](docs/clustering.md)\n- [Security Hardening](docs/security.md)\n- [Monitoring \u0026 Logging](docs/monitoring.md)\n\n## 🔧 Configuration\n\n### Basic Configuration\n\nCreate a new realm and configure your first application:\n\n1. **Access Admin Console**: http://localhost:8080/admin\n2. **Create Realm**: Navigate to \"Realm settings\" → \"Add realm\"\n3. **Create Client**: Add your application with appropriate settings\n4. **Create Users**: Add users with roles and permissions\n\n### Advanced Configuration\n\n**Database Configuration:**\n```bash\n# PostgreSQL\ndocker-compose --profile postgres up -d\n\n# MySQL\ndocker-compose --profile mysql up -d\n```\n\n**Clustering Setup:**\n```bash\n# Enable clustering with Infinispan\ndocker-compose --profile infinispan up -d\n```\n\n**SSL/TLS Configuration:**\n```bash\n# Enable HTTPS\ndocker-compose --profile nginx up -d\n```\n\n## 🧪 Testing\n\n### Run Tests\n```bash\n# Unit tests\n./mvnw test\n\n# Integration tests\n./mvnw verify -Pintegration\n\n# Full test suite\n./mvnw clean verify\n```\n\n### Test Coverage\n```bash\n# Generate coverage report\n./mvnw jacoco:report\n\n# View coverage\nopen target/site/jacoco/index.html\n```\n\n## 📊 Monitoring \u0026 Observability\n\n### Health Checks\n- **Application Health**: http://localhost:8080/health\n- **Metrics**: http://localhost:8080/metrics\n- **Readiness Probe**: http://localhost:8080/health/ready\n\n### Logging\n```bash\n# View application logs\ndocker-compose logs -f keycloak\n\n# View specific service logs\ndocker-compose logs -f postgres\n```\n\n### Metrics Integration\n- **Prometheus**: Metrics endpoint available at `/metrics`\n- **Grafana**: Pre-built dashboards for Keycloak monitoring\n- **Jaeger**: Distributed tracing support\n\n## 🔒 Security\n\n### Security Features\n- **Encryption at Rest**: Database and cache encryption\n- **Transport Security**: TLS 1.3 support\n- **Password Policies**: Configurable password requirements\n- **Session Management**: Secure session handling\n- **CORS Protection**: Cross-origin resource sharing controls\n\n### Security Hardening\n```bash\n# Production security profile\ndocker-compose --profile security-hardened up -d\n```\n\n## 🚀 Deployment\n\n### Production Deployment\n\n**Kubernetes:**\n```bash\n# Deploy to Kubernetes\nkubectl apply -f k8s/\n```\n\n**Docker Swarm:**\n```bash\n# Deploy to Docker Swarm\ndocker stack deploy -c docker-compose.prod.yml aether-realm\n```\n\n**Cloud Platforms:**\n- [AWS ECS](docs/deployment/aws.md)\n- [Google Cloud Run](docs/deployment/gcp.md)\n- [Azure Container Instances](docs/deployment/azure.md)\n\n### Scaling Considerations\n- **Horizontal Scaling**: Multiple instances behind load balancer\n- **Database Scaling**: Read replicas and connection pooling\n- **Cache Scaling**: Distributed cache with Infinispan\n- **CDN Integration**: Static asset delivery optimization\n\n## 🤝 Contributing\n\nWe welcome contributions! Please see our [Contributing Guide](CONTRIBUTING.md) for details.\n\n### Development Workflow\n1. Fork the repository\n2. Create a feature branch\n3. Make your changes\n4. Add tests\n5. Submit a pull request\n\n### Code Style\n- Follow [Java Code Style](docs/coding-style.md)\n- Use [Pre-commit hooks](.husky/pre-commit)\n- Ensure [CI/CD pipeline](.github/workflows/) passes\n\n## 📄 License\n\nThis project is licensed under the Apache License 2.0 - see the [LICENSE](LICENSE) file for details.\n\n## 🆘 Support\n\n### Getting Help\n- [Documentation](https://wiki.skygenesisenterprise.com)\n- [Community Forum](https://skygenesisenterprise.com/blog)\n- [GitHub Issues](https://github.com/skygenesisenterprise/aether-realm/issues)\n- [Discord Server](https://skygenesisenterprise.com/discord)\n\n## 🗺️ Roadmap\n\n### Upcoming Features\n- [ ] **Advanced Analytics** - User behavior and security analytics\n- [ ] **Machine Learning** - Anomaly detection and risk-based authentication\n- [ ] **Blockchain Integration** - Decentralized identity support\n- [ ] **Edge Computing** - Lightweight edge deployment options\n- [ ] **AI Assistant** - Natural language admin interface\n\n### Release Schedule\n- **Major Releases**: Every 6 months\n- **Minor Releases**: Monthly\n- **Patch Releases**: As needed\n\n## 📈 Performance\n\n### Benchmarks\n- **Concurrent Users**: 10,000+ authenticated users\n- **Login Throughput**: 5,000+ logins/second\n- **API Response Time**: \u003c100ms (95th percentile)\n- **Memory Usage**: 512MB base, 2GB recommended for production\n\n### Performance Tuning\n```bash\n# High-performance configuration\ndocker-compose --profile high-performance up -d\n```\n\n## 🌍 Ecosystem\n\n### Integrations\n- **Service Mesh**: Istio, Linkerd\n- **API Gateway**: Kong, Ambassador, Traefik\n- **Monitoring**: Prometheus, Grafana, ELK Stack\n- **CI/CD**: Jenkins, GitLab CI, GitHub Actions\n\n### Client Libraries\n- **Java**: Spring Security, Quarkus\n- **JavaScript**: React, Angular, Vue.js\n- **Python**: Django, Flask\n- **Go**: Gin, Echo\n- **.NET**: ASP.NET Core\n\n---\n\n\u003cdiv align=\"center\"\u003e\n\n**[⭐ Star this repo](https://github.com/skygenesisenterprise/aether-realm) | [🐛 Report Issues](https://github.com/skygenesisenterprise/aether-realm/issues) | [📖 Read Docs](https://wiki.skygenesisenterprise.com)**\n\nMade with ❤️ by the Sky Genesis Enterprise Team\n\n\u003c/div\u003e","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fskygenesisenterprise%2Faether-realm","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fskygenesisenterprise%2Faether-realm","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fskygenesisenterprise%2Faether-realm/lists"}