Specifications¶
State of the specs in Canaille¶
OAUTH2¶
❌ RFC7523: JWT Profile for OAuth 2.0 Client Authentication and Authorization Grants
✅ RFC7592: OAuth 2.0 Dynamic Client Registration Management Protocol
✅ RFC7636: Proof Key for Code Exchange by OAuth Public Clients
❌ RFC8705: OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens
❌ RFC9068: JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens
❌ RFC9101: OAuth 2.0 JWT-Secured Authorization Request (JAR)
❌ RFC9207: OAuth 2.0 Authorization Server Issuer Identification
OpenID Connect¶
Comparison with other providers¶
Here is a feature comparison with other OpenID Connect server software.
Canaille voluntarily only implements the OpenID Connect protocol to keep its codebase simple. We are currently working on supporting SQL databases backends.
Software |
Project |
Protocols implementations |
Backends |
|||||
---|---|---|---|---|---|---|---|---|
FLOSS |
Language |
LOC |
OIDC |
SAML |
CAS |
LDAP |
SQL |
|
Canaille |
✅ |
Python |
10k |
✅ |
❌ |
❌ |
✅ |
❌ |
❌ |
❔ |
❔ |
✅ |
✅ |
❌ |
✅ |
❔ |
|
✅ |
Go |
50k |
✅ |
❌ |
❌ |
✅ |
✅ |
|
✅ |
Python |
65k |
✅ |
✅ |
✅ |
✅ |
✅ |
|
✅ |
Python |
55k |
✅ |
✅ |
❌ |
✅ |
✅ |
|
✅ |
Java |
360k |
✅ |
✅ |
✅ |
✅ |
❌ |
|
❌ |
❔ |
❔ |
✅ |
✅ |
❌ |
✅ |
✅ |
|
✅ |
Java |
❔ |
✅ |
✅ |
✅ |
✅ |
❔ |
|
✅ |
Go |
50k |
✅ |
✅ |
❌ |
✅ |
✅ |
|
✅ |
Java |
600k |
✅ |
✅ |
✅ |
✅ |
✅ |
|
✅ |
Perl |
130k |
✅ |
✅ |
✅ |
✅ |
✅ |
|
❌ |
❔ |
❔ |
✅ |
✅ |
❌ |
✅ |
✅ |