mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-12 11:04:25 +00:00
71e40f6aa6
* update run and start section texts * adds showcase Co-authored-by: Maximilian Panne <maximilian.panne@gmail.com>
110 lines
6.2 KiB
Markdown
110 lines
6.2 KiB
Markdown
<img src="./docs/static/logos/zitadel-logo-dark@2x.png" alt="Zitadel Logo" height="100px" width="auto" />
|
|
|
|
[](https://github.com/semantic-release/semantic-release)
|
|
[](https://github.com/caos/zitadel/actions)
|
|
[](https://github.com/caos/zitadel/blob/main/LICENSE)
|
|
[](https://github.com/caos/zitadel/releases)
|
|
[](https://goreportcard.com/report/github.com/caos/zitadel)
|
|
[](https://codecov.io/gh/caos/zitadel)
|
|
|
|
## What Is ZITADEL
|
|
|
|
**ZITADEL** is a "Cloud Native Identity and Access Management" solution built for the cloud era. ZITADEL uses a modern software stack consisting of [**Golang**](https://golang.org/), [**Angular**](https://angular.io/) and [**CockroachDB**](https://www.cockroachlabs.com/) as sole storage and follows an event sourced pattern.
|
|
|
|
We built **ZITADEL** not only with the vision of becoming a great open source project but also as a superb platform to support developers building their applications, without need to handle secure user login and account management themselves.
|
|
|
|
## How Does It Work
|
|
|
|
We built **ZITADEL** around the idea that the IAM should be easy to deploy and scale. That's why we tried to reduce external systems as much as possible.
|
|
For example, **ZITADEL** is event sourced but it does not rely on a pub/sub system to function. Instead we built all the functionality right into one binary.
|
|
**ZITADEL** only needs [**Kubernetes**](https://kubernetes.io/) for orchestration and [**CockroachDB**](https://www.cockroachlabs.com/) as storage.
|
|
|
|
## Features of ZITADEL platform
|
|
|
|
* Authentication
|
|
* OpenID Connect 1.0 Protocol (OP)
|
|
* Username / Password
|
|
* Machine-to-machine (JWT profile)
|
|
* Passwordless with FIDO2
|
|
* Multifactor authentication with OTP, U2F
|
|
* Federation with OpenID Connect 1.0 Protocol (RP), OAuth 2.0 Protocol (RP)
|
|
* Authorization via Role Based Access Control (RBAC)
|
|
* Identity Brokering
|
|
* Delegation of roles to other organizations for self-management
|
|
* Strong audit trail for all IAM resources
|
|
* User interface for administration
|
|
* APIs for Management, Administration, and Authentication
|
|
* Policy configuration and enforcement
|
|
|
|
## Run ZITADEL anywhere
|
|
|
|
### Self-Managed
|
|
|
|
You can run an automatically operated **ZITADEL** instance on a CNCF compliant Kubernetes cluster of your choice:
|
|
- [CRD Mode on an existing k8s cluster](https://docs.zitadel.ch/docs/guides/installation/crd)
|
|
- [GitOps Mode on an existing k8s cluster](https://docs.zitadel.ch/docs/guides/installation/gitops)
|
|
- [GitOps Mode on VM/bare-metal](https://docs.zitadel.ch/docs/guides/installation/managed-dedicated-instance) using [ORBOS](https://docs.zitadel.ch/docs/guides/installation/orbos)
|
|
|
|
### CAOS-Managed
|
|
|
|
- **ZITADEL Cloud:** [**ZITADEL.ch**](https://zitadel.ch) is our shared cloud service hosted in Switzerland. [Get started](https://docs.zitadel.ch/docs/guides/usage/get-started) and try the free tier, including already unlimited users and all necessary security features.
|
|
- **ZITADEL Enterprise:** We operate and support a private instance of **ZITADEL** for you. [Get in touch!](https://zitadel.ch/contact/)
|
|
|
|
## Start using ZITADEL
|
|
|
|
### Quickstarts
|
|
|
|
See our [Documentation](https://docs.zitadel.ch/docs/quickstarts/introduction) to get started with ZITADEL quickly. Let us know, if you are missing a language or framework in the [Q&A](https://github.com/caos/zitadel/discussions/1717).
|
|
|
|
### Client libraries
|
|
* [Go](https://github.com/caos/zitadel-go) client library
|
|
* [.NET](https://github.com/caos/zitadel-net) client library
|
|
* [Dart](https://github.com/caos/zitadel-dart) client library
|
|
|
|
## Help and Documentation
|
|
|
|
* [Documentation](https://docs.zitadel.ch)
|
|
* [Ask a question or share ideas](https://github.com/caos/zitadel/discussions)
|
|
* [Say hello](https://zitadel.ch/contact/)
|
|
|
|
## Showcase
|
|
|
|
### Passwordless Login
|
|
Use our login widget to allow easy and sucure access to your applications and enjoy all the benefits of passwordless (FIDO 2 / WebAuthN):
|
|
- works on all modern platforms, devices, and browsers
|
|
- phishing resistant alternative
|
|
- requires only one gesture by the user
|
|
- easy [enrollment](https://docs.zitadel.ch/docs/manuals/user-factors) of the device during registration
|
|
|
|
|
|
|
|
|
|
### Admin Console
|
|
Use [Console](https://docs.zitadel.ch/docs/manuals/introduction) or our [APIs](https://docs.zitadel.ch/docs/apis/introduction) to setup organizations, projects and applications.
|
|
|
|
Register new applications
|
|
|
|
|
|
Delegate the right to assign roles to another organization
|
|
|
|
|
|
## How To Contribute
|
|
|
|
Details need to be announced, but feel free to contribute already. As long as you are okay with accepting to contribute under this projects OSS [License](./LICENSE) you are fine.
|
|
|
|
## Security
|
|
|
|
See the policy [here](./SECURITY.md)
|
|
|
|
## Other CAOS Projects
|
|
|
|
* [**ORBOS**](https://github.com/caos/orbos/) - GitOps everything
|
|
* [**OIDC for GO**](https://github.com/caos/oidc) - OpenID Connect SDK (client and server) for Go
|
|
* [**ZITADEL Tools**](https://github.com/caos/zitadel-tools) - Go tool to convert key file to privately signed JWT
|
|
|
|
## License
|
|
|
|
See the exact licensing terms [here](./LICENSE)
|
|
|
|
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
|