Skip to content

leodip/goiabada

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

400 Commits
.github/workflows
.github/workflows
 
 
site
site
 
 
src
src
 
 
test-integrations
test-integrations
 
 
.gitignore
.gitignore
 
 
CLAUDE.md
CLAUDE.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Goiabada

An open-source OAuth2 and OpenID Connect server for simple, secure authentication.

What does Goiabada do?

If you're building applications and need to handle user logins, manage permissions, or enable users to sign in across multiple apps with one account, Goiabada takes care of this for you. Instead of building authentication from scratch, you can integrate Goiabada and focus on what makes your application unique.

Goiabada handles:

  • User authentication - Secure login with passwords and two-factor authentication
  • Authorization - Control who can access what in your applications
  • Single sign-on (SSO) - Let users log in once and access multiple apps
  • API security - Protect server-to-server communications
  • User self-service - Give users control over their own profiles and security settings

Who is Goiabada for?

  • Developers building web or mobile apps who need authentication
  • Teams wanting to centralize user management across multiple applications
  • Organizations that need to self-host their identity provider for security or compliance
  • Anyone who wants an alternative to proprietary services like Auth0, Keycloak or cloud-only solutions

Key features

  • OAuth2 & OpenID Connect - Industry-standard protocols. Compatibility with your existing tools.
  • Single sign-on (SSO) - One login for all your connected applications. Users authenticate once and access multiple apps seamlessly.
  • Two-factor authentication & step-up auth - Extra security with one-time passwords (OTP). Step-up authentication for sensitive operations.
  • Fine-grained permissions - Define exactly who can access what in your applications.
  • Self-service account management - Users can update their own profiles, change passwords, and manage their security settings.
  • Dynamic client registration - Apps can self-register via RFC 7591. Useful for MCP servers and native applications.
  • Multiple database support - Choose your database: MySQL, PostgreSQL, Microsoft SQL Server, or SQLite.
  • Built with Go - Fast, lightweight, and resource-efficient. Low resource usage means lower hosting costs.

Why choose Goiabada?

  • Self-hosted & private - Keep full control of your user data and infrastructure. Your data never leaves your servers.
  • Free & MIT licensed - 100% free to use with no licensing fees, subscriptions, or vendor lock-in. Truly open source.
  • Lightweight - Low resource usage means lower hosting costs
  • Standards-compliant - Built on OAuth2 and OpenID Connect for maximum compatibility
  • Developer-friendly - Quick to set up, easy to integrate

Getting started

Ready to try Goiabada? Check out the documentation to get up and running quickly.

You can also explore our Docker images for easy deployment.

Mentioned in Awesome Go

About

Goiabada is an OAuth2 / OpenID Connect server written in Go.

goiabada.dev

Topics

security oauth2 authentication authorization user-management sso oauth2-server openid-connect identity-management openid-server sso-authentication oidc-provider oidc-server

Resources

Readme

License

MIT license
Activity

Stars

167 stars

Watchers

6 watching

Forks

12 forks
Report repository

Releases 15

Release 1.4.0 Latest
Nov 29, 2025
+ 14 releases

Contributors 4

  •  
  •  
  •  
  •  

Languages