Sparrow is an identity server based on SCIM v2 specification, OAuth2.0 and OpenIDConnect. The goal is to support fast reads, domains and making schema handling simple and easy. All the data is accessible over HTTP and authentication and authorization are supported by OpenIDConnect and OAuth2.
One motivation was to have a server that contains all the features of an LDAP server minus the pain of organizing and maintaining the Schema. Also (IMHO), LDAP's authorization model based on ACIs is very brittle, which brings to my another thought of having a fluent access control(ARBAC) mechanism built right into the identity server. And I want an identity server to have the ability to speak over HTTP directly without the need of custom proxies.
- All the SCIM v2 features (except for /Bulk and /Me) are implemented
- RBAC0 is supported
- Support for OAuth2.0 and OpenIDConnect
- Support for multiple domains
- A java client, see https://github.com/keydap/sparrow-client
- Support for LDAP bind, unbind, search and password modify operations over startTLS.
- Multi-Master Replication
Not yet.
- Preparing for OpenIDConnect Certification
- git checkout https://github.com/keydap/sparrow.git
- cd sparrow
- ./build-release.sh
- The binaries will be available under "dist" folder
Sparrow is licensed under Apache License Version 2
Copyright 2017 Keydap Software.