GitHub - JanssenProject/jans: The Janssen Project is a home for open source IAM components, featuring Auth Server (OAuth/OpenID), Agama low-code identity orchestration, and the Cedarling policy decision point. The "Janssen Server" distributions bundle IAM components under one control plane. (original) (raw)
Welcome to the Janssen Project
Janssen is a self-funded project chartered directly under the Linux Foundation to foster the development of enterprise digital identity and access management infrastructure. As the lead Contributors, the Gluu team drives the priorities on a day-to-day basis, governed and guided by the Janssen community Technical Steering Committee.
There are several Janssen Components in different stages of development, from demos to stable releases. Janssen Project software has batteries included. You will find binaries, cloud-native deployment assets, documentation and more-- enabling you to build a product or mission-critical cybersecurity service with Janssen software.
If your enterprise needs Janssen for a production deployment, Gluu offers a commercial distribution of Janssen Project Components calledGluu Flex and Gluu Solo.
Get Help: Discussions | Chat
Docs: Documentation
Contribute: Contribution Guide | Community Docs | Developer Guides
Resources to learn more: Gluu Academy
The table below lists components of the Janssen Project and theirmaturity stages.
| Component | Description | Lifecycle Stage |
|---|---|---|
| Jans Auth Server | A complete OAuth Authorization Server and a certified OpenID Connect Provider written in Java. It's the upstream open-source core of Gluu Flex. | |
| Agama | Agama offers an interoperable way to design authentication flows, coded in a DSL purpose-built for writing identity journeys. | |
| Jans FIDO | Enables end-users to enroll and authenticate with passkeys and other FIDO authenticators. | |
| Jans SCIM | SCIM JSON/REST API for user management, including associated FIDO devices. | |
| Jans Config API | RESTful APIs manage configuration for all Janssen components. | |
| Text UI ("TUI") | User interface accessible from command line. TUI is text-based interactive configuration tool that leverages config-API to configure Janssen Server modules | |
| Jans CLI | Command line configuration tools to help you correctly call the Config API. | |
| Jans Casa | Jans Casa is a self-service web portal for end-users to manage authentication and authorization preferences for their account in the Janssen Server | |
| Jans Cedarling | Cedarling is an embeddable stateful Policy Decision Point for authorization requests. In simple terms, the Cedarling returns the answer: should the application allow this action on this resource given these JWT tokens. It is written in Rust with bindings to WASM, iOS, Android, and Python. | |
| Jans Lock | An enterprise authorization solution featuring the Cedarling, a stateless PDP and the Lock Server which centralizes audit logs and configuration. | |
| Janssen Tarp | An OpenID Connect RP test website that runs as a browser plugin in Chrome or Firefox. | |
| Jans Chip | Sample iOS and Android mobile applications that implement the full OAuth and FIDO security stack for app integrity, client constrained access tokens, and user presence. |
Installation
You can install the Janssen federation stack in a Kubernetes cluster or as a single VM.
Development environments: Quick Start| Local K8S | VM install
Production deployments: Amazon EKS | Microsoft Azure AKS | Google GKE | Rancher
Check out theJanssen Documentationfor details.
Community
A BIG thanks to all the amazing contributors!! 👏 👏
Building a diverse and inclusive community is an important goal. Please let us know what we can do to make you feel more welcome, no matter what you want to contribute.
Code of Conduct / Contribution Guidelines / Security
- Janssen code of conduct ensures that the Janssen community is a welcoming place for everyone.
- Start with the Contribution Guidefor an introduction on the Janssen development lifecycle.
- If you think you found a security vulnerability, please refrain from posting it publicly on the forums, the chat, or GitHub. Instead, email us at
security@jans.io. Refer to Janssen Security Policy
Governance
Janssen is a self-funded Linux Foundation project, governed according to thecharter. Technical oversight of the project is the responsibility of the Technical Steering Committee ("TSC"). Day-to-day decision-making is in the hands of the Contributors. The TSC helps to guide the direction of the project and to improve the quality and security of the development process.
Support
If you find a bug in the Janssen project, would like to suggest a new feature, or have a "howto" question, please post onGitHub Discussions, which is the main channel for community support. There is also acommunity chat on Zulip.
Releases
Check out the latest release of the Janssen Project for new features and updates.
Janssen History
In 2020, Gluu decided to give contributors a role in the governance and collaborated with the Linux Foundation to charter the Janssen Project. The initial software contribution for the Janssen Project was a fork of the Gluu Server version 4. Subsequently, the Janssen Project developers added a new configuration control plane, tools, demos, documentation, packaging and deployment assets.
Why the name Janssen?
Pigeons (or doves...) are universally regarded as a symbol of peace--which we need more of today. But pigeons are also really fast, capable of flying 1000 kilometers in a single day, powered by a handful of seeds. The Janssen brothers of Arendonk in Belgium bred the world's fastest family of racing pigeons. Janssen racing pigeons revolutionized the sport. The Janssen Project seeks to revolutionize how open-source digital identity scales in the clouds.