a cloud native identity and access management platform: single sign on with OIDC, OAuth2 and SAML, passwordless and multi factor login, users, projects and a full admin console.
ZITADEL is an open source identity and access management platform. It gives your applications a complete authentication and authorization backend: single sign on over OpenID Connect, OAuth2 and SAML, passwordless and passkey login, multi factor authentication, and multi tenancy with organizations, projects, roles and self service. A full web Console lets administrators manage organizations, users, projects, applications, login policies and branding, while applications integrate through the OIDC issuer and the management and auth APIs.
It suits teams that want to own their identity provider inside their own cloud account: centralizing login for internal and customer facing apps, adding social and enterprise single sign on, issuing and validating tokens, and enforcing multi factor and passwordless policies from one place.
cloudimg delivers ZITADEL fully installed with its PostgreSQL database on the same instance and the Console fronted by nginx with TLS, so the identity provider answers the moment the instance boots. The image is secure by default: because ZITADEL is itself the identity provider, nothing may ship with a known secret, so the 32 character masterkey that encrypts data at rest, the initial admin password, the PostgreSQL password and the API tokens are each generated uniquely on every instance's first boot and are never baked into the image. The database binds to loopback only and is reached solely through the private container network. Every image is paired with a step by step deploy guide and backed by 24/7 support.
Real screenshots taken while testing this image against its deployment guide.