Overview
MaxKey single sign-on authentication system, homophonic Max's key means the biggest key, is the industry-leading enterprise-level IAM identity management and authentication product , the first domestic open source IAM brand; supports OAuth 2.0/OpenID Connect, SAML 2.0, JWT, CAS, Standard protocols such as SCIM provide simple, standard, secure and open user identity management (IDM), identity authentication (AM), single sign-on (SSO), RBAC rights management and resource management.
Official websiteOfficial website | Official website second line
QQ exchange group: 434469201
Email: [email protected]
Code hosting code cloud (Gitee) | GitHub
Single Sign On (Single Sign On) is abbreviated as SSO. Users only need to log in to the authentication center once to access all mutually trusted application systems without logging in again.
The main function:
-
All application systems share an identity authentication system
-
All application systems can identify and extract ticket information
Product Features
- Standard Authentication Protocol:
| serial number | protocol | support |
|---|---|---|
| 1.1 | OAuth 2.0/OpenID Connect | high |
| 1.2 | SAML 2.0 | high |
| 1.3 | JWT | high |
| 1.4 | CASE | high |
| 1.5 | FormBased | middle |
| 1.6 | TokenBased(Post/Cookie) | middle |
| 1.7 | ExtendApi | Low |
| 1.8 | EXT | Low |
- Login support
| serial number | Login Method |
|---|---|
| 2.1 | Dynamic Captcha Alpha/Numeric/Arithmetic |
| 2.2 | Two-factor authentication |
| 2.3 | SMS Authentication Tencent Cloud SMS/Alibaba Cloud SMS/NetEase Yunxin |
| 2.4 | Login Easy/Google/Microsoft Authenticator/FreeOTP/Support TOTP or HOTP |
| 2.5 | Kerberos/SPNEGO/AD域 |
| 2.6 | OpenLDAP/ActiveDirectory/Standard LDAP server |
| 2.7 | Social Account WeChat/QQ/Weibo/Dingding/Google/Facebook/Other |
| 2.8 | Scan the code to log in to Enterprise WeChat / Dingding scan the code to log in |
-
Provide a standard authentication interface to facilitate the integration of other applications to integrate SSO, secure mobile access, secure API, third-party authentication and Internet authentication.
-
Provide user life cycle management, support SCIM 2 protocol, based on Apache Kafka broker, and realize identity supply synchronization through connectors.
-
The certification center has platform independence and environmental diversity, supports Web, mobile phones, mobile devices, etc., such as Apple iOS, Andriod, etc., and comprehensively covers the certification capabilities from B/S to mobile applications.
-
Multiple authentication mechanisms coexist, and each application system can retain the original authentication mechanism and integrate the authentication of the authentication center; the application is highly independent, does not depend on the authentication center, and can use the authentication of the authentication center to achieve single sign-on.
-
Based on the Java EE platform, using Spring, MySQL, Tomcat, Apache Kafka, Redis and other open source technologies, the micro-service architecture has strong scalability.
-
Open source, safe, self-controllable, license Apache 2.0 License & MaxKey copyright statement .
interface
MaxKey Certification
login interface
Main interface
download
Current version Baidu network disk download, historical version
| Version | date | Docker | netdisc | Network disk extraction code |
|---|---|---|---|---|
| v 3.1.1 GA | 2021/11/30 | Link | download | mxk9 |
Roadmap
| serial number | plan | time |
|---|---|---|
| 1 | Maxkey-Cloud (micro service support) | 2021Q3 |
| 2 | Zero trust scenario integration | 2021Q4 |
| 3 | React, and Ant Design | 2021Q4 |
| 4 | OAuth 2.1 | 2022Q1 |
| 5 | OpenID Connect optimize | 2022Q2 |
| 6 | Java 17+ | 2022Q3 |
| 7 | Jakarta EE 9+ | 2022Q3 |
| 8 | Spring Framework 6 | 2022Q4 |
| 9 | Spring Boot 3 | 2022Q4 |
Version release notes
MaxKey v 3.1.1 GA 2021/11/30
*(MAXKEY-210901) Tencent iOA zero trust product adaptation
*(MAXKEY-210902) docker deployment improvement and documentation optimization
*(MAXKEY-210903) docker-compose support and documentation
*( MAXKEY-210904) SCIM2 optimization
*(MAXKEY-210905) Organization and user Excel import optimization
*(MAXKEY-210906) Authentication service drop-down menu bug fix
*(MAXKEY-210907) Added account policy function
*(MAXKEY-210908) Status check management .health.mail.enabled=false
*(MAXKEY-210909) Image verification code separation
*(MAXKEY-210910) Cache function optimization
*(MAXKEY-210911) Independent task MaxKeyMgtJobs
*(MAXKEY-210912) The problem of the left menu of the management terminal is fixed
* (MAXKEY-210913) Modify the WebContext.getBean method to return a class object
*(MAXKEY-210914) Fix the problem that the authentication failure exceeds the maximum number of lock times
*(MAXKEY-210915) platform.common.js optimization
*(MAXKEY-210916) CAS single point Login symbol problem adjustment
*(MAXKEY-210917) API call authentication interception optimization
*(MAXKEY-210918) APP loading empty problem fix
*(MAXKEY-210919) OAuth2 token supports GET method
*(MAXKEY-210920) OAuth2 client_credentials mode optimization
*(MAXKEY-210921) Depends jar reference, update and upgrade
spring 5.3.13
springData 2.5.7
springkafka 2.7.8
springbootadmin 2.5.4
jodatime 2.10.13
mybatis-jpa-extra 2.6.1