Guardian

Enterprise-grade Authentication & Authorization for Modern Applications

🌟 Overview

Guardian is a robust, open-source authentication and authorization solution designed for modern applications. It provides a comprehensive suite of authentication methods (passwordless, username/password, social login) with full OAuth 2.0 and OpenID Connect support, while giving you complete control over your user data.

Why Guardian?

• 🔐 Enterprise-Grade Security: Built with security best practices

• 🎯 Flexible Integration: Works seamlessly with your existing user service

• 🏢 Multi-Tenant Ready: Supports multiple tenants with logical isolation

• 🚀 Quick Implementation: Get up and running in minutes

• 📱 Multi-Platform Support: Native support for web, mobile, and API authentication

• 🔑 OAuth 2.0 & OIDC: Full OAuth 2.0 and OIDC protocol support, secured with PKCE and discovery endpoints

• ⚡ High Performance: Built on Vert.x for reactive, non-blocking I/O

✨ Features

Authentication Methods

• 📱 Passwordless Authentication

• 🔑 Username Password Authentication

• 🌐 Social Authentication

• 👤 Guest Login

• 📲 Multi Factor Authentication (coming soon)

Session Management

• 📊 Multi-device session tracking

• 🔒 Secure session management

• ⚡ Real-time session invalidation

• 🔄 Token refresh mechanisms

• 🚪 Universal Logout

Become an Identity Provider

• 🔐 Full OAuth 2.0 implementation (Authorization Code, Implicit, Client Credentials)

• ✅ OpenID Connect 1.0 compliant (Discovery, UserInfo, JWKS endpoints)

• 🛡️ PKCE support for enhanced security

• 📝 Consent Management(coming soon)

Tenant Management

• 📈 Scalable design for serving multiple tenants

• ⚙️ Tenant-level configuration

🚀 Getting Started

Ready to get started with Guardian? Follow our comprehensive Quick Start Guide to set up Guardian in minutes.

⚙️ Configuration

For the complete configuration reference and detailed setup instructions, see the Configuration Guide.