Overview
MaxKey single sign-on authentication system, homophonic Max's key means the biggest key, is the industry's leading IAM identity management and authentication product , supports OAuth 2.x/OpenID Connect, SAML 2.0, JWT, CAS, SCIM and other standard protocols, providing simple , standard, secure and open user identity management (IDM), identity authentication (AM), single sign-on (SSO), RBAC rights management and resource management, etc.
Official websiteOfficial website | Official website second line
QQ exchange group: 434469201
Email: [email protected]
Single Sign On (Single Sign On) is abbreviated as SSO . Users only need to log in to the authentication center once to access all mutually trusted application systems without logging in again.
The main function:
- All application systems share an identity authentication system
- All application systems can identify and extract ticket information
Product Features
- Standard protocol
serial number | protocol | support |
---|---|---|
1.1 | OAuth 2.0/OpenID Connect | high |
1.2 | SAML 2.0 | high |
1.3 | JWT | high |
1.4 | CASE | high |
1.5 | FormBased | middle |
1.6 | TokenBased(Post/Cookie) | middle |
1.7 | ExtendApi | Low |
1.8 | EXT | Low |
- Login support
serial number | Login Method |
---|---|
2.1 | Dynamic Captcha Alpha/Numeric/Arithmetic |
2.2 | Two-factor authentication |
2.3 | SMS Authentication Tencent Cloud SMS/Alibaba Cloud SMS/NetEase Yunxin |
2.4 | Login Easy/Google/Microsoft Authenticator/FreeOTP/Support TOTP or HOTP |
2.5 | Kerberos/SPNEGO/AD域 |
2.6 | OpenLDAP/ActiveDirectory/Standard LDAP server |
2.7 | Social Account WeChat/QQ/Weibo/Dingding/Google/Facebook/Other |
2.8 | Scan the code to log in to Enterprise WeChat/Dingding/Feishu Scan the code to log in |
-
Provide a standard authentication interface to facilitate the integration of other applications to integrate SSO, secure mobile access, secure API, third-party authentication and Internet authentication.
-
Provide user life cycle management, support SCIM 2 protocol; out-of-the-box connector (Connector) realizes identity supply synchronization.
-
Simplified Microsoft Active Directory Domain Controller, standard LDAP server organization and account management, password self-service password reset.
-
The multi-tenant authentication function supports independent management of multiple enterprises under the group or data isolation of different departments under the enterprise, reducing operation and maintenance costs.
-
The certification center has platform independence and environmental diversity, supports Web, mobile phones, mobile devices, etc., such as Apple iOS, Andriod, etc., and comprehensively covers the certification capabilities from B/S to mobile applications.
-
Based on the Java EE platform, micro-service architecture, using open source technologies such as Spring, MySQL, Tomcat, Redis, Kafka, RocketMQ, etc., with strong scalability.
-
Open source, safe, self-controllable, license Apache 2.0 License & MaxKey copyright statement .
interface
MaxKey Certification
login interface
Main interface
download
Current version Baidu network disk download, historical version
Version | date | Docker | netdisc | Network disk extraction code |
---|---|---|---|---|
v 3.3.3 GA | 2022/03/03 | Link | download | mxk9 |
Roadmap
serial number | plan | time |
---|---|---|
1 | Maxkey-Cloud (micro service support) | 2021Q3 |
2 | Zero trust scenario integration | 2021Q4 |
3 | OAuth 2.1 | 2022Q1 |
4 | React, and Ant Design | 2022Q2 |
5 | OpenID Connect optimize | 2022Q2 |
6 | Java 17+ | 2022Q3 |
7 | Jakarta EE 9+ | 2022Q3 |
8 | Spring Framework 6 | 2022Q4 |
9 | Spring Boot 3 | 2022Q4 |
Version release notes
MaxKey v 3.3.3 GA 2022/03/03
*(MAXKEY-220401) NetEase Enterprise Email SSO Support
*(MAXKEY-220402) Active Directory Domain Controller Organization, Account Synchronization Optimization
*(MAXKEY-220403) OAuth and OIDC Compatible Authorization /authorization's bearer #I4VFYD(Peerless Hero peerless_hero)
*(MAXKEY-220404) Optimize real-time synchronization, add RocketMQ support
*(MAXKEY-220405) Convert IP addresses to administrative areas, and add remote login risk notices later
*(MAXKEY-220406) Official website content optimization and improvement
*(MAXKEY-220407) Image verification code can be configured and adjusted; supports digital and arithmetic calculations; length 80, height 40
*(MAXKEY-220408) RSAUtils optimization adds signature and verification functions, and optimizes PEM generator functions
* (MAXKEY-220409) The height of the login verification code on the management side is inconsistently adjusted
*(MAXKEY-220410) The DATABASE_HOST in the docker configuration file is changed to localhost
*(MAXKEY-220411) The default tenant ID for registration is set to 1
*(MAXKEY-220412) LDAP account mapping is added Function, login account and LDAP account can be mapped
*(MAXKEY-220413) Log function optimization
*(MAXKEY-220414) Configuration management default post-login address
*(MAXKEY-220415) Server removes dependency on maxkey-client-sdk
*(MAXKEY-220416) Product brief description, adding badges flag, product function description optimization
*(MAXKEY- 220417) Increase the default value of user, institution, etc. table
*(MAXKEY-220418) Metadatas function optimization
*(MAXKEY-220419) Avatar save error bug
fix #I4VNPO(Unparalleled Hero peerless_hero)
*(MAXKEY-220421) Add SERVER_PROFILES, SERVER_PORT, SERVER_SESSION_TIMEOUT environment parameters
*(MAXKEY-220422) Authentication cache optimization
*(MAXKEY-220423) Dependency reference, update and upgrade
spring 5.3.16
springBoot 2.6.4
springSecurity 5.6.2
springData 2.6.2
springSession 2.6.2
springcloud 3.1.1
commonsvalidator 1.7
RocketMQclient 4.9.2
RocketmMQspringboot 2.2.1
jsoup 1.14.3