unsubbed.co
Home / Categories / Security & Authentication / Authentication & SSO

Authentication & SSO

Authentication & SSO tools -- a subcategory of Security & Authentication

40 tools 10 SaaS alternatives

Replace Popular SaaS

Firebase

66 alternatives

Okta

25 alternatives

LastPass

21 alternatives

Supabase

20 alternatives

Auth0

17 alternatives
workos

WorkOS

13 alternatives
authy

Authy

7 alternatives

Google Authenticator

7 alternatives

AppWrite

6 alternatives

Nhost

3 alternatives

40 Tools

PocketBase

58K

Open-source backend in a single 12 MB binary — realtime database, auth, file storage, and admin dashboard. No Docker, no Postgres, just run it.

Easy to deploy

Vaultwarden

57K

Lightweight, self-hosted Bitwarden-compatible password manager written in Rust. Uses 10x less RAM than the official server and works with all Bitwarden clients.

KeyCloak

33K

Open source identity and access management. Add authentication to applications and secure services with minimum effort.

Tailscale

30K

WireGuard mesh VPN that sets up in under 2 minutes — MagicDNS, exit nodes, subnet routers, and SSH all included, free for 100 devices.

Better Auth

27K

TypeScript-first authentication framework with 50+ plugins covering passkeys, multi-tenancy, SSO, and MFA — configured in a single auth.ts file.

Authelia

27K

Open-source IAM platform and OpenID Certified OpenID Connect 1.0 provider. Modern, flexible authentication and authorization.

Ente

25K

End-to-end encrypted photo storage audited by three independent firms — Google Photos privacy without Google's data practices.

Authentik

21K

Authentik is a self-hosted authentication & SSO tool with support for Authentication, Identity Management, security.

Teleport

20K

Identity-aware infrastructure access platform for SSH, Kubernetes, databases, and web apps with audit logging.

Bitwarden

18K

Bitwarden is the most trusted password manager for passwords and passkeys at home or at work, on any browser or device. Start with a free trial

Supertokens

15K

Open Source User Authentication. Build fast, maintain control, with reasonable pricing

OAuth2 Proxy

14K

Self-hosted authentication & SSO tool that provides reverse proxy and authentication middleware.

Zitadel

13K

Zitadel handles provides a comprehensive identity management solution as a self-hosted solution.

Casdoor

13K

Casdoor handles UI-first identity access management as a self-hosted solution.

Logto

12K

Logto lets you run identity solution offering customizable login experiences entirely on your own server.

Nhost

9.1K

Nhost is a TypeScript-based application that provides managed backend infrastructure.

Hanko

8.9K

Hanko lets you run streamline user authentication entirely on your own server.

Pocket ID

7.2K

For authentication & SSO, Pocket ID is a self-hosted solution that provides simple OIDC authentication provider.

Tinyauth

7.1K

Tinyauth is a self-hosted authentication & SSO tool that provides simple authentication middleware for reverse proxies.

Stack Auth

6.7K

Stack Auth gives you provides secure authentication, authorization, and user management for developers in just 5 minutes on your own infrastructure.

LLDAP

6.1K

LLDAP gives you lightweight LDAP implementation on your own infrastructure.

Cosmos

5.8K

Cosmos is a JavaScript-based application that provides complete self-hosting solution.

Passbolt

5.8K

Passbolt is a self-hosted authentication & SSO replacement for 1Password, Authy, and more.

UnKey

5.2K

For authentication & SSO, UnKey is a self-hosted solution that provides streamline API authentication.

Kanidm

4.7K

For authentication & SSO, Kanidm is a self-hosted solution that provides modern and simple identity management platform.

Cerbos

4.3K

Cerbos is a self-hosted authentication & SSO replacement for AWS Cognito, Auth0, and more.

2FAuth

3.8K

2FAuth handles manage your Two-Factor Authentication (2FA) accounts and generate their security codes as a self-hosted solution.

Octelium

3.5K

Octelium lets you run unified zero-trust secure access platform entirely on your own server.

GLAuth

2.8K

GLAuth is a Go-based application that provides LDAP authentication server for developers.

Defguard

2.7K

For authentication & SSO, Defguard is a self-hosted solution that provides enterprise-grade VPN solution combining WireGuard.

VoidAuth

1.9K

VoidAuth is a TypeScript-based application that provides simplified user management and SSO.

Authgear

1.5K

Authgear gives you managed authentication platform on your own infrastructure.

Rauthy

1K

Released under Apache-2.0, Rauthy provides lightweight and simple identity provider on self-hosted infrastructure.

Melody Auth

593

Melody Auth gives you effortless authentication built for flexibility and control on your own infrastructure.

Juno

392

Juno is a TypeScript-based application that provides serverless platform for developers to build.

nforwardauth

156

Nforwardauth handles simple and minimalist forward auth service intended for use with reverse proxies as a self-hosted solution.

AuthPortal

90

AuthPortal is a self-hosted authentication & SSO tool that provides authentication gateway for Plex, Jellyfin, or Emby.

Authman

9

For authentication & SSO, Authman is a self-hosted solution that provides cross-platform 2FA TOTP server with mobile and desktop apps.

Kontoj

8

Kontoj gives you tool for creating account credentials for multiple services via JSON on your own infrastructure.

FusionAuth

FusionAuth lets you run authentication and user management entirely on your own server.

Why Self-Host Your Authentication and SSO?

Authentication is the gateway to every application in your stack. When you delegate it to Auth0, Okta, or Firebase Auth, a single provider controls who can access all your systems — and charges you per monthly active user. At scale, Auth0’s pricing can reach thousands of dollars monthly. More critically, an outage at your auth provider locks every user out of every application simultaneously.

Keycloak is the industry standard for self-hosted identity management, providing SAML, OpenID Connect, and LDAP with fine-grained authorization policies. Authentik offers a more modern, Python-based alternative with a visual flow designer for building custom authentication workflows. Authelia adds two-factor authentication and SSO as a lightweight proxy that sits in front of your existing applications. For simpler setups, Pocket ID provides a minimal OpenID Connect provider, and TinyAuth offers basic auth middleware in a single container.

Password management and credential storage are closely related concerns. Vaultwarden is a lightweight Bitwarden-compatible server that replaces the official Bitwarden server for self-hosters, providing full password vault functionality at a fraction of the resource cost. Passbolt focuses on team password sharing with granular access controls. For developers, Infisical and Phase handle secrets management with environment-specific configurations. The breadth of self-hosted auth tools — from LLDAP for lightweight directory services to Casdoor for multi-tenant identity — means you can match your auth infrastructure exactly to your requirements rather than paying for features you do not need in a commercial product’s pricing tier.

← Back to Security & Authentication