casdoor

MCP Security & Auth

An open-source AI-first Identity and Access Management (IAM) /AI MCP & agent gateway and auth server with web UI supporting MCP, A2A, OAuth 2.1, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD

Track releases GitHub Website

Go Latest v2.395.0 · 1mo ago Security brief →

Features

Supports multiple authentication protocols (OAuth 2.0, OIDC, SAML, CAS, LDAP, SCIM)
Provides a web UI for managing users, organizations, and policies
Integrates with Casbin for flexible ACL/RBAC/ABAC policy enforcement
Offers MFA options including WebAuthn, TOTP, Face ID
Connects to external identity providers such as Google Workspace and Azure AD

Recent releases

View all 58 releases →

v2.395.0 Mixed 1mo

Notable features

Add local OpenClaw transcript sync for session logs

Full changelog

2.395.0 (2026-04-07)

Bug Fixes

fix authz permission for well-known OAuth endpoints (#5372) (e9c2ec0)

Features

add local OpenClaw transcript sync for session logs (#5370) (2a8ac57)

View release on GitHub

v2.394.0 New feature 1mo

Notable features

LoginPage captcha rule check now applied to SendCodeInput.js component

Full changelog

2.394.0 (2026-04-06)

Features

apply loginPage captcha rule check to SendCodeInput.js (#5369) (31ce151)

View release on GitHub

v2.393.0 Bug fix 1mo

Filter validation was tightened to prevent incorrect passes, improving reliability of access decisions.

View release on GitHub

v2.392.0 New feature 1mo

Notable features

Support for GET requests in MCP SSE

Full changelog

2.392.0 (2026-04-06)

Features

support GET request in MCP SSE (#5363) (1637ca1)

View release on GitHub

v2.391.0 New feature 1mo

Notable features

Provider-based entry viewers for SELinux logs

Full changelog

2.391.0 (2026-04-05)

Features

add provider-based entry viewers for SELinux logs (#5364) (c7ad205)

View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Releases

View all →

Releases per week

Mar 12

Mar 19

Mar 26

Apr 2

Apr 9

Apr 16

Apr 23

Apr 30

May 7

May 14

May 21

May 28

Cadence 30.0 / wk

Last release 0d

Tracked 58

Security

Full profile →

Security score 5.2/10

OpenSSF —

Open CVEs 0

SECURITY.md Active maintainer

Community

GitHub stars 13,680

Forks 1,694

Open issues 102

Open PRs 3

Stars/wk velocity 0.0

HN peak 4

About

Stars

13,680

Forks

1,694

Languages

Go CSS HTML

View on GitHub Homepage Live demo Documentation

Install & Platforms

Install via

docker docker-compose go

Community & Support

Discord

Similar tools

aashari/mcp-server-aws-sso

UPinar/contrastapi

jagmarques/asqav-mcp

jnMetaCode/shellward

Pantheon-Security/notebooklm-mcp-secure

About

Stars

13,680

Forks

1,694

Languages

Go CSS HTML

View on GitHub Homepage Live demo Documentation

Install & Platforms

Install via

docker docker-compose go

Community & Support

Discord

Similar tools

aashari/mcp-server-aws-sso

UPinar/contrastapi

jagmarques/asqav-mcp

jnMetaCode/shellward

Pantheon-Security/notebooklm-mcp-secure

Beta — feedback welcome: [email protected]