English | Chinese
An overview of the
MaxKey Single Sign On System (Single Sign On System), Chinese homonym Marx key meaning is the biggest key, is the industry’s leading enterprise open source IAM identity management and identity authentication products, domestic open source IAM first brand; Supports standard protocols such as OAuth 2.0/OpenID Connect, SAML 2.0, JWT, CAS, and SCIM, and provides simple, standard, secure, and open user identity management (IDM), identity authentication (AM), single sign-on (SSO), RBAC permission management, and resource management.
The official website of website | website
QQ communication group: 434469201
The following email: [email protected]
Managed code making | yards cloud (Gitee)
What is Single Sign On, or SSO for short?
Users only need to log in to the authentication center once to access all trusted application systems.
Main functions:
-
All application systems share an identity authentication system
-
All application systems can identify and extract ticket information
Product features
- Standard Authentication protocol:
| The serial number | agreement | support |
|---|---|---|
| 1.1 | The 2.0 / OpenID Connect | high |
| 1.2 | SAML 2.0 | high |
| 1.3 | JWT | high |
| 1.4 | CAS | high |
| 1.5 | FormBased | In the |
| 1.6 | TokenBased(Post/Cookie) | In the |
| 1.7 | ExtendApi | low |
| 1.8 | EXT | low |
- Log on to support
| The serial number | Log on to way |
|---|---|
| 2.1 | Dynamic verification code Letters, numbers, and arithmetic |
| 2.2 | Two-factor authentication |
| 2.3 | SMS authentication Tencent cloud SMS/Ali cloud SMS/netease Cloud message |
| 2.4 | Log in to Easy /Google/Microsoft Authenticator/FreeOTP/ Supports TOTP or HOTP |
| 2.5 | The Kerberos/SPNEGO/AD domain |
| 2.6 | The OpenLDAP/ActiveDirectory/standard LDAP server |
| 2.7 | Social accounts wechat /QQ/ Weibo/Dingding /Google/Facebook/ others |
-
Provide standard authentication interfaces for other applications to integrate SSO, secure mobile access, secure apis, third-party authentication, and Internet authentication.
-
Provides user life cycle management, supports SCIM 2 protocol, implements identity supply synchronization through Connector based on Apache Kafka agent.
-
The certification center is platform independent and diversified. It supports the Web, mobile phones, and mobile devices, such as Apple iOS and Android, and provides comprehensive coverage of authentication capabilities from B/S to mobile applications.
-
Multiple authentication mechanisms coexist. Each application system can retain the original authentication mechanism and integrate the authentication from the certification center. Applications are highly independent and can use the authentication from the authentication center to implement single sign-on (SSO).
-
Based on Java platform development, using Spring, MySQL, Tomcat, Apache Kafka, Redis and other open source technologies, support micro services, strong scalability.
-
Open source, secure, self-controlled, License Apache 2.0 License & MaxKey Copyright Notice.
interface
MaxKey certification
Login screen
The main interface
MaxKey management
Access the report
User management
Application management
download
Current version Baidu web disk download, historical version
| version | The date of | Download address | Extract the code |
|---|---|---|---|
| V 2.7.0 GA | 2021/04/15 | A link to download | hf73 |
Roadmap
1.MaxKey Cloud(Microservices edition) — 2021
2. Zero-trust scenario integration
Release notes
MaxKey v 2.7.0 GA 2021/04/15
*(maxkey-210302) BootJar, Docker, *(maxkey-210302) BootJar, Docker, Standard three package configuration optimization *(maxkey-210303) openldap,activedirectory password authentication support *(maxkey-210304) database access annotation from @service to @repository *(maxkey-210305) Cas Logout Optimization support *(maxkey-210306) CAS single point logout and return data type adapter optimization *(maxkey-210307) CAS Return data Class Refactoring *(maxkey-210308) CAS Address Optimization Unified configuration to Constant Class CasConstants *(Maxkey-210309) Null pointer cancellation BUG *(Maxkey-210310) OAuth2 Address Optimization Unified configuration Constant class OAuth2Constants *(maxkey-210311) Authentication conversion BUG when OAuth2 Token is called multiple times *(maxkey-210312) ExtendApi standard optimization *(maxkey-210313) Added ExtendApi adapter based on time signature *(MAXkey-210314) Return data Constants *(Maxkey-210315) Extended Data Configuration Optimization *(maxkey-210316) LDAP and MS AD Fixed attributes *(Maxkey-210317) SpringSecurity OAuth 2 Client Login Adaptation *(maxkey-210318) Remove Desktop support, Adaptor customization for FormBase can be developed later *(maxkey-210319) application. Properties profiles optimization, *(maxkey-210320) Delete maxkey.properties, configure integration to application.properties *(maxkey-210321) add adapter registration function, Select the corresponding adapter *(maxkey-210322). Add Synchronizer interface synchronization function *(maxkey-210323). Add time-based OTP interface support *(maxkey-210324) XSS security protection function *(maxkey-210325) Chando Project Management System single sign-on Adaptation *(maxkey-210326) GitLab Single sign-on adaptation *(maxkey-210327) Cloud speed mailbox single sign-on adaptation *(maxkey-210328) JumpServer Open Source Forts SINGLE sign-on adaptation *(Maxkey-210329) Huawei cloud single sign-on adaptation *(Maxkey-210330) Jenkins Single sign-on adaptation *(Maxkey-210331) Notification and announcement simple function *(maxkey-210332) Query parameter optimization *(maxkey-210333) SDK optimization *(maxkey-210334) Rely on JAR references, update and upgrade log4j 2.14.1 Spring 5.3.6 springBoot 2.4.4 SpringSecurity 5.4.6 tomcat 9.0.44Copy the code