legitima is a work in progress LDAP provider for ORY Hydra. Together with it, it can be used as an OpenID Connect (OIDC) provider to authenticate to any OIDC capable apps.
I wanted to have an easy and customizable OIDC provider with LDAP capabilities. ORY Hydra fits for my purpose, but ORY Kratos (ORY's Identity Management Software) hasn't got LDAP yet.
- Login via LDAP
- Simple authentication flow for ORY Hydra
- Permission management (only allow users in specific groups access to a client)
- Consent flow for ORY Hydra
- User Self-Service
- Personal Data
- Security (Password, 2FA)
- Two-Factor Authentication
- WebAuthn
- TOTP
- Admin area
- Group management in LDAP and legitima
- Client management in ORY Hydra and legitima
- Better customization