Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/matrix-org/matrix-authentication-service

OAuth2.0 + OpenID Provider for Matrix Homeservers
https://github.com/matrix-org/matrix-authentication-service

Last synced: 2 months ago
JSON representation

OAuth2.0 + OpenID Provider for Matrix Homeservers

Host: GitHub
URL: https://github.com/matrix-org/matrix-authentication-service
Owner: matrix-org
License: apache-2.0
Archived: true
Created: 2021-07-08T12:49:54.000Z (over 3 years ago)
Default Branch: main
Last Pushed: 2024-09-10T14:56:26.000Z (5 months ago)
Last Synced: 2024-11-06T04:40:46.779Z (3 months ago)
Language: Rust
Homepage: https://matrix-org.github.io/matrix-authentication-service/
Size: 16.4 MB
Stars: 112
Watchers: 11
Forks: 32
Open Issues: 117
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE

Awesome Lists containing this project

awesome-starred - matrix-org/matrix-authentication-service - OAuth2.0 + OpenID Provider for Matrix Homeservers (others)

README

# OAuth2.0 + OpenID Connect Provider for Matrix Homeservers

## matrix-authentication-service is now actively maintained at [element-hq/matrix-authentication-service](https://github.com/element-hq/matrix-authentication-service)

MAS (Matrix Authentication Service) is an OAuth 2.0 and OpenID Provider server for Matrix developed from 2021 through 2024 as part of the Matrix.org Foundation. The Matrix.org Foundation is not able to resource maintenance of matrix-authentication-service and it continues to be developed by Element.

See [The future of Synapse and Dendrite blog post](https://matrix.org/blog/2023/11/06/future-of-synapse-dendrite/) for more information.

---

It has been created to support the migration of Matrix to an OpenID Connect (OIDC) based authentication layer as per [MSC3861](https://github.com/matrix-org/matrix-doc/pull/3861).

See the [Documentation](https://matrix-org.github.io/matrix-authentication-service/index.html) for information on installation and use.

You can learn more about Matrix and OIDC at [areweoidcyet.com](https://areweoidcyet.com/).

![Delegated OIDC architecture with MAS overview](overview.png)

## Features

- Supported homeservers
- ✅ Synapse
- Authentication methods:
- ✅ Upstream OIDC
- 🚧 Local password
- ‼️ [Application Services login](https://matrix-org.github.io/matrix-authentication-service/as-login.html) (**Encrypted bridges**)
- Migration support
- ✅ Compatibility layer for legacy Matrix authentication
- ✅ Advisor on migration readiness
- ✅ Import users from Synapse
- ✅ Import password hashes from Synapse
- ✅ Import of external subject IDs for upstream identity providers from Synapse

## Upstream Identity Providers

MAS is known to work with the following upstream IdPs via OIDC:

- [Keycloak](https://www.keycloak.org/)
- [Dex](https://dexidp.io/)
- [Google](https://developers.google.com/identity/openid-connect/openid-connect)