Identity Link is a modular, extensible OAuth2 and OpenID Connect (OIDC) authorization server built with Symfony and PHP. It provides a complete authentication and authorization solution designed for modern, distributed applications requiring token-based security.
Identity Link is a modern identity management system built with scalability, flexibility, and security in mind. Here’s why it stands out:
Built as a set of microservices, Identity Link allows horizontal scaling-spin up more instances of the same service to handle increased load and maintain high performance.
Identity Link is composed of swappable modules, making it easy to adapt to your infrastructure or requirements:
- The default
db-user
module stores user data in PostgreSQL. - You can easily replace it with a custom implementation that pulls users from Active Directory, an API, or any other system.
Security is built in. TOTP (e.g., Google Authenticator) is supported out of the box. Thanks to the modular design, you can also implement other 2FA methods like SMS verification or third-party services with minimal changes.
Identity Link is fully customizable. You can:
- Apply your own themes to modify the look and feel.
- Customize all texts and labels.
- Provide translations for a multilingual user experience.
Identity Link provides a secure and flexible identity solution for modern applications. Key features include:
- OAuth2 and OpenID Connect (OIDC) support
- JWT access token issuance
- Authorization Code, Client Credentials, and Password Grant flows
- RESTful API for user, client, and group management
- Modular architecture for pluggable components
- Built-in TOTP two-factor authentication
- Easy customization of UI, text, and translations
- Horizontal scalability through microservices
- Docker-based development environment
- Extensive PHPUnit test coverage
- DB Clients - Manages registered OAuth2 clients, secrets, and their access policies
- DB Users - Handles user registration, storage, and authentication
- 2FA - Provides optional two-factor authentication via TOTP
- Shared - Common utilities and abstractions shared across services
- Docker – Centralized Docker Compose setup to orchestrate all services locally for development or testing
- Installation
- Configuration
- OAuth Usage Guide
- OpenID Connect Usage Guide
- API Contract Interfaces
- Theme Customization
Identity Link is open source software licensed under the MIT License, which permits reuse, modification, and distribution with minimal restrictions.