Why MaxKey Stands Out as a Leading Open-Source SSO Solution

Introduction

MaxKey is an open-source Single Sign-On (SSO) system licensed under Apache 2.0, offering enterprise-grade IAM features such as user identity management, authentication, RBAC, and resource control. It supports standard protocols like OAuth 2.x/OpenID Connect, SAML 2.0, JWT, CAS, and SCIM.

Features

Standard protocols

OAuth 2.x/OpenID Connect – high support

SAML 2.0 – high support

JWT – high support

CAS – high support

Form-Based – medium support

Token-Based (Post/Cookie) – medium support

ExtendApi – low support

EXT – low support

Login methods

Dynamic verification code (alphabet/number/arithmetic)

Two-factor authentication (SMS, time token, email)

SMS verification (Tencent Cloud, Alibaba Cloud, NetEase)

Time token (Google/Microsoft Authenticator, FreeOTP, TOTP/HOTP)

Domain authentication (Kerberos/SPNEGO/AD)

LDAP (OpenLDAP, Active Directory, standard LDAP servers)

Social accounts (WeChat, QQ, Weibo, DingTalk, Google, Facebook, etc.)

QR code login (Enterprise WeChat, DingTalk, Feishu)

Provides standard authentication APIs for SSO integration, secure mobile access, API security, third‑party and internet authentication.

Supports user lifecycle management with SCIM 2.0 and ready-made connectors for identity synchronization.

Simplifies Active Directory and LDAP management, offering self‑service password reset.

Multi-tenant IDaaS allows independent management of multiple enterprises or departments, reducing operational costs.

Platform‑agnostic, works on web, iOS, Android, and other devices, covering B/S and mobile applications.

Built on Java EE micro‑service architecture using Spring, MySQL, Tomcat, Redis, MQ, etc., offering strong extensibility.

Open-source, secure, and self‑controlled.

Security

In addition to the depicted security strategies, MaxKey participates in the domestic Zero‑Trust Working Group, the most authoritative zero‑trust industry organization.

Installation & Deployment

Example shown for Linux; Windows and Docker instructions are available at the official tutorial page.

4.1 Download

The community edition deployment package is available on the official website; source code can also be compiled from Gitee or GitHub.

4.2 Import SQL

SQL scripts for each version are provided in the repository. Create a

maxkey

database and import the appropriate SQL file.

4.3 Modify hosts

<code>vi /etc/hosts</code>

Add the following entries:

<code>127.0.0.1  sso.maxkey.top
127.0.0.1  mgt.maxkey.top
127.0.0.1  tokenbased.demo.maxkey.top
127.0.0.1  cas.demo.maxkey.top
127.0.0.1  oauth.demo.maxkey.top</code>

4.4 Start services

<code>./start_maxkey.sh &
./start_maxkey_mgt.sh &
./start_maxkey_demo.sh &</code>

Interface Showcase

Login page

Main dashboard

Report view

User management

Application management

Related Links

Official website: http://www.maxkey.top

Gitee repository: https://gitee.com/dromara/MaxKey

GitHub repository: https://github.com/dromara/MaxKey