Lib.rs

keyring

Cross-platform library for managing passwords/credentials

scrypt

password-based key derivation function

rpassword

Read passwords in console applications

oauth2

An extensible, strongly-typed implementation of OAuth2

casbin

An authorization library that supports access control models like ACL, RBAC, ABAC

jwt-cli

A super fast CLI tool to decode and encode JWTs built in Rust

sequoia-wot

OpenPGP's web of trust

prs-cli

Secure, fast & convenient password manager CLI with GPG & git sync

jwt-simple

Easy to use, secure, non opinionated JWT (JSON Web Tokens) implementation for Rust

sspi

Security Support Provider Interface (SSPI) API

gcp_auth

Google cloud platform (GCP) authentication using default and custom service accounts

vaultrs

An asynchronous Rust client library for the Hashicorp Vault API

google-managedidentities1

A complete library to interact with Managed Service for Microsoft Active Directory Consumer API (protocol v1)

http-auth

HTTP authentication: parse challenge lists, respond to Basic and Digest challenges. Likely to be extended with server support and additional auth schemes.

totp-rs

RFC-compliant TOTP implementation with ease of use as a goal and additionnal QoL features

azure_identity

Rust wrappers around Microsoft Azure REST APIs - Azure identity helper crate

bcrypt-pbkdf

password-based key derivation function

google-analytics3

A complete library to interact with analytics (protocol v3)

jwt-ui

A Terminal UI for decoding/encoding JSON Web Tokens

google-tagmanager2

A complete library to interact with Tag Manager (protocol v2)

webauthn-rs

Webauthn Framework for Rust Web Servers

ssh-agent-lib

A collection of types for writing custom SSH agents

josekit

JOSE (Javascript Object Signing and Encryption) library for Rust

redox_users

access Redox users and groups functionality

ssi

Core library for Verifiable Credentials and Decentralized Identifiers

actix-web-grants

Authorization extension actix-web to protect your endpoints

openidconnect

OpenID Connect library

cotp

Trustworthy, encrypted, command-line TOTP/HOTP authenticator app with import functionality

git-credential-keepassxc

Helper that allows Git and shell scripts to use KeePassXC as credential store

libreauth

Collection of tools for user authentication

saml2aws-auto

management tool for AWS credentials when using Keycloak with SAML

auth-git2

Authentication for git2

diceware

A command line diceware, with or without dice

mnemonic

Encode any data into a sequence of English words

oxide-auth

A OAuth2 library for common web servers, featuring a set of configurable and pluggable backends

rsasl

SASL framework, aimed at both middleware-style protocol implementation and application code. Designed to make SASL authentication simple and safe while handing as much control to the user as possible

gix-credentials

gitoxide project to interact with git credentials helpers

stytch

client

kanidm_lib_file_permissions

Kanidm File Permissions Library

samael

A SAML2 library for Rust

ant-cli

CLI client for the Autonomi network

aliri

Implementations of the Javascript/JSON Object Signing and Encryption (JOSE) standards

filepack

file verification utility

biscuit

work with Javascript Object Signing and Encryption(JOSE), including JSON Web Tokens (JWT), JSON Web Signature (JWS) and JSON Web Encryption (JWE)

secretgarden

generating and securely storing secrets

openpgp-card-tools

inspecting, configuring and using OpenPGP cards

openid

Connect & Discovery client library using async / await

ybaas

Don't you love when you accidentally tap your Yubikey when you have your IRC client in focus and you send 987947 into Libera? Want to be able to have that experience without having…

passepartui

A TUI for pass

http-auth-basic

HTTP Basic Authentication Scheme (RFC 7617 and RFC 2617 compilant, base64-encoded credentials) for Rust applications

axum-auth

High-level http auth extractors for axum

streamstore-cli

CLI for S2

reqwest-oauth1

Add OAuth1 signature to reqwest with oauth1-request

neptune-cash

A layer-1 cryptocurrency featuring scalable privacy and post-quantum security

zitadel

API access and authentication in Rust

biscuit-cli

a CLI to manipulate biscuit tokens

libgssapi

A safe binding to gssapi

akas

API Key Authorization Server

google-oauth

Google oauth server-side client

sha-crypt

Pure Rust implementation of the SHA-crypt password hash based on SHA-512 as implemented by the POSIX crypt C library

yubirs

interacting with YubiKeys (OTP and PIV functionality)

libsecret

Rust bindings of libsecret

passkey

A one stop library to implement a passkey client and authenticator

passage-auth

Authentication API for Passage by 1Password

oauth1-request

OAuth 1.0 client library

catlock

Defend keyboard against your cat

affinidi-messaging-sdk

Affinidi Messaging SDK

oauth10a

oauth 1.0a protocol fully-async with logging, metrics and tracing facilities

portier_broker

Reference implementation of the Portier broker protocol

blockchyp

SDK for Rust. Like all BlockChyp SDKs, it provides a full client for the BlockChyp gateway and BlockChyp payment terminals.

sasl

authentication. Currently only does the client side.

cratery

-- a private cargo registry

adv_random

Create random numbers, passwords, or strings based on rules

scim_proto

Kanidm SCIM Protocol Bindings

cryptex

uses system keyrings to store and retrieve secrets or a local file

xaskpass

A lightweight passphrase dialog

phraze

Random passphrase generator

aws-sdk-rolesanywhere

AWS SDK for IAM Roles Anywhere

prs-gtk3

Secure, fast & convenient password manager CLI with GPG & git sync

ory-client

SDK Client for Ory

rs-firebase-admin-sdk

Firebase Admin SDK for Rust

axum-keycloak-auth

Protect axum routes with a JWT emitted by Keycloak

zkryptium

Rust crypto library for zero-knowledge proofs

tame-oauth

A (very) simple oauth 2.0 library

ctap-hid-fido2

Rust FIDO2 CTAP library

totp_rfc6238

generating Time-based One-time Password (TOTP) codes/tokens defined in RFC 6238

totp-lite

correct TOTP library

qiniu-upload-manager

Qiniu Upload Manager for Rust

ffsend

Easily and securely share files from the command line. A fully featured Send client

jwks_client_rs

JWKS-sync client implementation for Auth0

lade

Automatically load secrets from your preferred vault as environment variables, and clear them once your shell command is over

eff-wordlist

packaging EFF wordlist

supabase-auth

Supabase Auth implementation following the official client libraries

tauri-plugin-authenticator

Use hardware security-keys in your Tauri App

docker_credential

Reads a user's docker credentials from config

webauthn_rp

Server-side Web Authentication (WebAuthn) Relying Party (RP) API

ssh-key-dir

sshd AuthorizedKeysCommand to read ~/.ssh/authorized_keys.d

okta-jwt-verifier

A helper library for working with JWT's for Okta in Rust

jwt-authorizer

jwt authorizer middleware for axum and tonic

pkpw

What if correct horse battery staple, but Pokémon

radius-rust

Pure Rust implementation of RADIUS Server/Client

propelauth

managing authentication and authorization with support for multi-tenant / B2B products, powered by PropelAuth

bitwarden-api-api

Api bindings for the Bitwarden API

share-1password

Securely share notes with others using 1Password. Perfect for developers sending passwords to clients.

wow_login_messages

Message definitions for World of Warcraft authentication servers

galileo-osnma

Galileo OSNMA (Open Service Navigation Message Authentication)

sasl2-sys

Bindings for Cyrus SASL

git2_credentials

Provide credential function to used with git2::RemoteCallbacks.credentials

yayo

Manage and generate OTP (one time password) codes

legba

A fast multi protocol credential bruteforcer/sprayer/enumerator

identity_credential

Verifiable Credentials standard

keepass-to-env

convert Keepass database to environment variable

twitch_oauth2

Oauth2 for Twitch endpoints

powerplatform-dataverse-service-client

unofficial rust client library for connecting to Microsoft Dataverse environments

ledger-zondax-generic

Ledger Hardware Wallet - Common APDU Protocol Types

keyring-search

Cross-platform library for searching the platform specific credential store, made possible by keyring-rs

scram-rs

Salted Challenge Response Authentication Mechanism (SCRAM) SASL mechanism, a library which implements SCRAM logic

oidc-cli

A command line tool to work with OIDC tokens

cargo-credential

assist writing Cargo credential helpers

axum_session_auth

Provide a User Authentication and privilege Token Checks. It requires the Axum_Session library.

azure_jwt

JWT validator for Microsoft Azure Id tokens

ogk

cli tool for open.go.kr

snmp2

SNMP v1/v2/v3 sync/async client library with traps and MIB support

bitwarden

Secrets Manager SDK

spotify-quickauth

Quickly authenticate librespot-based applications with Spotify

simple-ldap

A high-level LDAP client for Rust

grammers-session

Different session storages for Telegram data

diceware_wordlists

Wordlists for the command line tool Rusty Diceware

challenge_response

Perform HMAC-SHA1 and OTP challenges with YubiKey, OnlyKey and NitroKey, in pure Rust

openiap

test client

passgen-cmd

Cross-platform tool for generating cryptographically secure passwords/tokens and other sets and sequences

ripasso

A password manager that uses the file format of the standard unix password manager 'pass'

pinentry

API for interacting with pinentry binaries

google-walletobjects1

A complete library to interact with Walletobjects (protocol v1)

pe-sign

cross-platform tool developed in Rust, designed for parsing and verifying digital signatures in PE files. It provides a simple command-line interface that supports extracting certificates…

askpass-1p

An askpass utility that integrates with 1Password CLI

sshcerts

parsing, verifying, and creating SSH Certificates

cargo-credential-1password

A Cargo credential process that stores tokens in a 1password vault

ci-id-bin

CLI app to detect ambient OIDC credentials on CI systems

aws-assume-role-rs

A command line tool to generate AWS temporary security credentials

encrypt_config

manage, persist and encrypt your configurations

keyscope

key and secret workflow

npwg

Securely generate random passwords

otpauth

Two-step verification of HOTP/TOTP for Rust

pavex_session

HTTP sessions support for Pavex

mas-iana

IANA registry data for JOSE and OAuth 2.0

autonomi-cli

Autonomi CLI

tauri-plugin-oauth

A Tauri plugin for spawning a localhost server. Needed for some oauth flows (Login with X).

firestore-db-and-auth

allows easy access to your Google Firestore DB via service account or OAuth impersonated Google Firebase Auth credentials

limes

multi-tenant capable Authentication middleware for OAuth2.0 and Open ID Connect with support for axum

passage_flex

Passkey Flex for Rust - Add passkey authentication to your own Rust authentication flows with Passage by 1Password

pam

Safe Rust wrappers for PAM authentication

z_osmf

z/OSMF Client

kadmin

Rust bindings for the Kerberos administration interface (kadm5)

keyweave

Fetches secrets from Azure Key Vault and weaves them into a convenient .env file

openid-client

OpenID client for Rust

mattermost-rust-client

Rust client for Mattermost

twitch_oauth_token

Twitch oauth

mc-attestation-verifier

SGX Enclave Attestation Report Verification

min_jwt

Minimal JSON Web Token library

authress

SDK for RUST - provides authorization as a service with fully compatible REST apis. Authentication / Authorization / User Identity Roles / Permissions / Policies

clubstatusd

HTTP API which allows the folks in your hackerspace to track it's status, with privacy enabled. Features: ternary status (public, private, closed), announcements (who's coming, talks…

some-auth

User management and JWT logic for API services

oauth-lib

Asynchronous Rust library to deal with OAuth flows

ideatopia-password_generator

Generates passwords with various complexities

poem-grants

Authorization extension for poem to protect your endpoints

pamsm

Rust wrappers around PAM Service Modules functions

diqwest

Trait to extend reqwest for digest auth flow

gravel-gateway

A Prometheus Push Gateway for FAAS applications

opentalk-types-signaling-livekit

Signaling types for the OpenTalk livekit module

rucat_common

Client library of Rucat server with engine APIs provided

affinidi-did-resolver-cache-sdk

Affinidi DID Resolver SDK

rotp

command line HOTP and TOTP generator

async-oauth2

An asynchronous OAuth2 flow implementation

crowbar

Securily generates temporary AWS credentials through Identity Providers using SAML

graph-oauth

Rust SDK Client for Microsoft Identity Platform

branca

Authenticated encrypted API tokens for Rust. A secure alternative to JWT.

totp

CLI tool for generating TOTP codes

casdoor-sdk

Casdoor SDK

provider-archive

reading and writing wasmCloud capability provider archive files

twitch_eventsub

that handles everything with Twitch EventSub helix api for you

cawg-identity

Rust SDK for CAWG (Creator Assertions Working Group) identity assertion

digest-access

HTTP Digest Access Authentication compliant with ITEF RFC2069, RFC2617 and RFC7616 for Rust

ory-kratos-client

SDK Client for Ory Kratos

dtz-identity-auth

authentication traits for DownToZero backends

okta

A fully generated & opinionated API client for the Okta API

baza

The base password manager

rbac-rs

A pluggable RBAC system for Rust using SQLx

actix-casbin

An Actix actor for casbin

oidc_agent_rs

Unix only oidc-agent library for Rust

light-openid

Lightweight OpenID primitives & client

otp-std

Generating and verifying One-Time Passwords

frank_jwt

JSON JWT

sshauth

SSH key based (agents or static files) authentication tokens

jwt

JSON Web Token library

pam-f

Safe Rust wrappers for PAM authentication

partout

🧊 Iced desktop app for pass

msal

Stub library for libhimmelblau

ntfy

sending notifications over ntfy

middle

Client Authorization Middleware for APIs secured via OAuth2 or Bearer Tokens. Tonic & reqwest integration. Based on the oauth2 crate.

authenticated-pseudonyms

anonymous credentials

alipan

sdk for rust

gix-sec

gitoxide project providing a shared trust model

macaroon

Fully functional implementation of macaroons in Rust

pam-client2

Application API wrapper to Pluggable Authentication Modules (PAM) (forked and fixed version of pam-client)

ssi-data-integrity

Verifiable Credentials Data Model v1.1 for the ssi library

aws-iam

dealing with AWS IAM Policy resources

teller

A developer-first multi provider secret manager

digest_auth

Digest Auth algorithm as defined in IETF RFC 2069, 2617, and 7616, intended for HTTP clients

qiniu-upload-token

Qiniu Upload Policy Builder & Parser, Upload Token Generator & Parser for Rust

init-data-rs

Telegram Mini Apps init data parser and validator for Rust

balloon-hash

Pure Rust implementation of the Balloon password hashing function

ddnet-accounts

The account server binary, which takes HTTP requests for account related operations

jsonwebtokens

A Json Web Token implementation for Rust

authbeam

Authentication manager

lfspull

git lfs file pulling implementation in pure rust. Can only pull files / folders and only support token-auth for now.

trailbase-extension

SQLite extension used by TrailBase

clerk-fapi-rs

An unofficial Rust SDK for the Clerk REST Frontend API

nitrocli

A command line tool for interacting with Nitrokey devices

machineid-crystal

Get an encrypted unique MachineID/HWID/UUID. Inspired by .Net DeviceId.

identity_core

The core traits and types for the identity-rs library

identity_dbus_broker

DBus Broker which supplies credentials for authenticated Entra ID users

rdf-proofs

BBS+ signatures and zero-knowledge proofs for Linked Data

msgraph-rs

interacting with Microsoft Graph API

axum-token-auth

passwordless authentication middleware for axum

fidoprobe

manage FIDO2 devices

ucred

safe access to ucred(3C), user credentials for processes

brize_auth

A tiny async authentication library

VaultAPI-Client

Client application for VaultAPI server

aegis-vault

parsing and dumping Aegis vaults

dacquiri

An authorization framework with compile-time enforcement

ntlmclient

NTLM client library for Rust

authifier

Opinionated Rust authentication library

pesel-rs

PESEL validation and detail extraction with multiple data layout implementations

smart-id-rust-client

Smart ID Rust Client

rasn-credssp

Data types for the Credential Security Support Provider Protocol

phabricator-oauth

OAuth2 authentication on Phabricator

iceberg-rest-catalog

REST catalog for the unofficial Iceberg table format implementation

another-steam-totp

Steam time-based one-time password

passrs

Linux pass program, with shared folders

fi-verifiable-data

VC and VP wrapper for rust and WASM. fi-digital-signatures crate is used to sign and verify the data objects.

otpget

A command-line tool for automatically retrieving OTP codes from email messages

kaldav

Caldav client

rsub

A high-performance message broker with QUIC transport and pub/sub messaging patterns

valorant_api_official

interacting with the Official Valorant API

runeauth

Extendable Cookies

ate-auth

Represents a standardized data model and API for authenticating an ATE chain-of-trust

sd-jwt-rs

Rust reference implementation of the IETF SD-JWT specification (v7)

cargo-credential-libsecret

A Cargo credential process that stores tokens with GNOME libsecret

rjwt

A recursive Javascript Web Token with support for ECDSA

iam-runtime-rs

Generated protobufs for integrating with and implementing iam-runtime services

sos-vault

Vault encrypted storage for the Save Our Secrets SDK

passport-strategies

A thin wrapper on top of oauth2-rs that simplifies oauth2 authentication

trustchain

decentralised PKI reference implementation

rusty-mail

A CLI Gmail client built in Rust

c2pa-status-tracker

Status tracking internals for c2pa-rs crate

ones-oidc

ONES OpenID Connect client for Rust

oauth2-types

OAuth 2.0 types used by the Matrix Authentication Service

slauth

oath HOTP and TOTP complient implementation

rs-keycloak

Faça a autenticação dos seus projetos usando Keycloak

hyphae-handshake

Noise protocol framework handshakes for QUIC

eternaltwin_oauth_client

RfcOauthClient implementations

qwicket

http query management tool for commandline lovers

alcoholic_jwt

validation of RS256 JWTs

password-rules-parser

Parser for the HTML passwordrules attribute

parquet2lance

Convert parquet files to lance

fs-share

A cross-platform file-sharing CLI application

ory-oathkeeper-client

ORY Oathkeeper is a reverse proxy that checks the HTTP Authorization for validity against a set of rules. This service uses Hydra to validate access tokens and policies.

streambed

core library components

pow_account

generates cryptographic hashes with a second round of hashing to produce configurable leading zeros for proof-of-work or validation

kanidm_client

Kanidm Client Library

clio-auth

OAuth 2 helper library for CLI and desktop applications

kvac

Keyed-Verification Anonymous Credentials (KVAC) and Algebraic MACs

ecksport-auth

Native auth impl using NaCl-based signing key system

auto-launch

Auto launch any application or executable at startup. Supports Windows, macOS, and Linux.

yubico

Yubikey client API library

oauth-axum

OAuth2 authorization code flow with Axum

oauth-certs

The project fetches oauth certificates from providers during runtime and stores them in static Read / Write lock

apple-password-gen

Generate passwords in the format used by Apple's Strong Password Suggestion

ledger-transport-hid

Ledger Hardware Wallet - HID Transport

psw-gen

passworld generator

agp-config

Configuration utilities

cargo-credential-netrc

Cargo credential provider that parses your .netrc file to get credentials

trino-rust-client

A trino client library

biscuit-parser

Datalog parser used in the biscuit-auth and biscuit-quote crates

password

manage passwords

rocket_airlock

TL;DR: Authentication and Authorization for rocket applications. The security airlock is the entry point to a rocket. Everything from the outside environment that wants to enter a rocket…

s3-presign

A minimal library for generating presigned URLs for Amazon S3 compatible services

compact_jwt

Minimal implementation of JWT for OIDC and other applications

envio

A Modern And Secure CLI Tool For Managing Environment Variables

gecos

parsing and generation of gecos strings

opaque-borink

configuration of OPAQUE, a passowrd-authenticated key exchange protocol

feedsweeper

🧹 Automatically tidy up your RSS feed backlog

authlogic

Authentication logic for Actix Web applications

protobuf-web-token

Create, verify and decode protobuf web tokens

rusty-jwt

encoding and decoding JSON Web Tokens (JWT)

aliri_tower

Tower middleware for interacting with aliri authorities

ockam_identity

Ockam is a library for building devices that communicate securely, privately and trustfully with cloud services and other devices

password-maker

Highly customizable password generation library.🔑

two-factor-auth

CLI to generate two-factor-auth token compatible with Google Authenticator

atm0s-sdn-identity

generating and verifying identities for atm0s-sdn

rp-supabase-client

Supabase PostgREST client wrapper with auth capabilities

qiniu-objects-manager

Qiniu Objects Manager for Rust

yapp

Password Prompt

remote-files

a cli/lib wrapper of opendal to download/upload and manage remote files on buckets

pwfuzz-rs

Password list mutator/expander

authly-common

Authly common datatypes and algorithms

betfair-adapter

interacting with Betfair from Rust

rowid

A time-based unique ID solution

dimo-rust-sdk

Community-driven DIMO SDK in Rust

svc-authn

An authentication library

rocket_firebase_auth

Encode/decode firebase tokens in rocket apps with ease

sos

Distributed, encrypted database for private secrets

project_tstings

test project

qcs-api-client-common

Common code for QCS API clients

privy

auth and transaction sending in Rust

personio-rs

Async Rust client for the Personio HR management system

identity_verification

Verification data types and functionality for identity.rs

axum-jwt-auth

JWT authentication middleware for Axum

google/ctap2

OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards

ctap-types

no_std friendly types for FIDO CTAP

netdb_auth

Netdb Auth validation for rocket

dcaf

ACE-OAuth framework

boostydownload

application to bulk-download content from Boosty

ofi-pass

A password promptor for pass

bitwarden-data

contains structs for exported bitwarden data

bws

Bitwarden Secrets Manager CLI

fenc_cli

vade

VC and DID engine

libpwquality

bindings for Rust

needroleshere

AWS IAM Roles Anywhere helper

axum-oidc

A wrapper for the openidconnect crate for axum

authoscope

Scriptable network authentication cracker

user_trait

user authentication abstraction in Rust

fido-authenticator

FIDO authenticator Trussed app

bios-basic

An embeddable message queue system

tauri-plugin-keychain

A Tauri keychain plugin

letmein-proto

Authenticated port knocking - Wire protocol

china_identification_card

validating Chinese identification card numbers based on official rules and checksums

volcengine-rs

Volcengine API SDK

quickdash

A modern alternative to QuickSFV using Rust

mcai_models

Models for Media Cloud AI project

just-auth

just for oauth2 login

keycloak-oauth

designed for seamless integration with Keycloak's OAuth2 authentication flows

distro-keyring

Keyring data files from linux distributions

argentum_user_account_business

Business layer of user account component

wow_srp

Server and client library for the World of Warcraft flavor of SRP6 with support for reconnection

apt-auth-config

parse APT auth.conf.d configurations

scram

provider library