An open-source enterprise SSO service that bridges SAML and OIDC to OAuth 2.0, with SCIM 2.0 directory sync.
Ory Polis is an open-source enterprise Single Sign-On (SSO) service that bridges SAML and OpenID Connect identity providers to OAuth 2.0 flows. It abstracts the complexities of these protocols, making it easier to implement secure authentication in web applications. Additionally, it supports Directory Sync via SCIM 2.0 for automated user provisioning and de-provisioning.
Developers and organizations building web applications that require enterprise-grade authentication with SAML or OIDC providers, especially those needing to integrate with existing corporate identity systems.
Developers choose Ory Polis because it simplifies enterprise SSO by abstracting complex protocols into familiar OAuth 2.0 flows, supports self-hosting for full data control, and offers flexible database options. Its open-source nature and modular design provide transparency and customization not always available in commercial solutions.
Streamline your web application's authentication with Polis, an SSO service supporting SAML and OpenID Connect protocols. Beyond enterprise-grade Single Sign-On, it also supports Directory Sync via the SCIM 2.0 protocol for automatic user and group provisioning/de-provisioning.
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
Bridges complex SAML and OIDC flows to standard OAuth 2.0, allowing developers to work with familiar authentication patterns without deep protocol knowledge, as highlighted in the README's focus on abstraction.
As an open-source, self-hosted solution, it ensures full control over user data and identity infrastructure, avoiding vendor lock-in, which aligns with the project's philosophy of data ownership.
Supports a 'Bring Your Own Database' model with built-in compatibility for MySQL, Postgres, MongoDB, and more, offering deployment flexibility as stated in the key features.
Includes SCIM 2.0 for automated directory sync and modular design for maintainability, catering to complex enterprise needs with both SSO and lifecycle management.
Requires significant setup and ongoing maintenance, including database management and security patching, which can be resource-intensive compared to managed services like the Ory Network.
Advanced features and enterprise support require the paid Ory Enterprise License, making the free version less suitable for mission-critical deployments without additional investment.
Optimized for integration with other Ory services (e.g., Kratos, Hydra), which might add complexity and vendor ties if used outside the Ory stack, as indicated in the ecosystem section.