Open SSO (Single Sign On) [NodeJS]

Open SSO is a centralized user management system that using Single Sign On (SSO) for authentication method.
Open SSO follow the JWT standard for Oauth 2.0 as describe in RFC7519 and RFC9068.

Why I should use this?

• If you have multiple application but want a single login authentication
• If you want a scalable user management system, JWT made everything stateless
• If you want to built microservice architecture starting from user
• Saving hours when you have a new project that require user management
• Helps other people to have login system to their static websites
• Make money online with put some ads, through sso login page

Features :

• Well Online Documentation
• Easy Instalation and Configuration
• Single Sign On / Same Sign On
• Built-in Two/Multi Factor Authentication (2FA/MFA)
• Built-in Webhook for broadcasting/event streaming
• Enterprise logins: Google, Apple and Microsoft
• Social logins: Twitter X, Facebook, Github and Gitlab
• First REST API
• All basic user management system, signin, signout, forgot/change password. etc
• Support multiple databases, PostgreSQL, MySQL, MariaDB, default is SQLite3
• Support multiple cache system, memory, file or redis. default is memory.
• HTML Minified
• Contact page + Mailer
• Included Google Analytics
• Easy verify Webmaster Tools
• Anti Spam with Google reCaptcha v3
• Fast, Low Overhead and Asynchronous Designed
• Strong in High Traffic with Worker / CPU Cluster
• Support Docker and Docker Compose
• Light and Dark template

Specs

• Using Fastify v5 – The Fastest NodeJS Framework
• Using sequelize to support multiple databases
• Using Bootstrap 5 CSS framework
• Using ETA Template Engine
• Using JS Standard Code Style
• Using Reactive UI with ReefJS v12 (no jQuery)

Security

• JWT Standard, RFC7519 and RFC9068
• Built-in 2FA/MFA TOTP, RFC6238
• Webhook protected with HMAC Signature
• HTML auto encode the markup (Safe from XSS Attack)
• 98.5% Coverage Unit Test

Minimum Requirement

• NodeJS v20
• cPanel shared hosting + storage space 1Gb

Installation

1. Build source by run npm install.
2. Edit the config.js file.
3. Upload to your server.
4. You have to run the server.js
5. Done, that’s very easy bro

Integration Starter Template

There is a example script or a starter template that already integrated with OpenSSO,
This will make you easier to learn OpenSSO also saving many hours just for creating a new application.

Native:

• Pure HTML+JavaScript
• Native PHP

Framework:

• Laravel 8
• TotalJS 4
• NestJS 10
• NextJS 13
• AstroJS 4
• ExpressJS 4
• FastifyJS 4

BONUS

• FREE setup on cPanel
• FREE setup NGINX + Load Balancer on VPS.
• Need help for custom installation? Just contact me via email.

Changelog

Date: 04 Jun 2025

Version: 2.0.0

- Upgrade Fastify v5.
- Changed nyc with c8.
- Changed native StandardJS with ESLint.
- Update Dockerfile & docker-compose.yml.
- Update helper, schemas and unit test.
- Update regex email and username.
- Fixed file db.mysql.sql and db.postgre.sql.
- Fixed custom port in db connection.
- Fixed deprecated package.
- Upgrade dependencies
- Update opensso docs

Date: 31 Aug 2024

Version: 1.6.0

- Add Github login.
- Add Gitlab login.
- Add Facebook login.
- Add Twitter X login.
- Add Microsoft Entra login.
- Add new page deletion policy.
- Fixed typo in file `db.mysql.sql`.
- Fixed fontawesome doesn't displayed correctly.
- Fixed baseAssetsUrl doesn't working as expected.
- Fixed Total User List in yearly
- Upgrade dependencies
- Update opensso docs

Date: 19 Jun 2024

Version: 1.5.0

- Create new API for handling import user.
- Disallow register API for handling import user.
- Add better security protection for SSO.
- Add webhook support.
- Add new API to generate new SSO key.
- Updating data SSO should not auto generating new SSO key.
- Fixed apple signin issue (user didn't knew if popup blocked).
- Fixed method and service is null when adding a new user by admin
- Fixed dynamic user data should be wrapped to an object type.
- Fixed some minor bugs on ui.
- Update database.
- Update postman file.
- Update online documentation.

Date: 03 Jun 2024

Version: 1.4.0

- Now support 2FA/MFA via Email and/or Authenticator.
- Now support use a custom id and/with hash value when registering new user.
- Adding new optional reply_to parameter on Sendmail API.
- Simplify email content to avoid spam trigerred issue.
- Removed make-promises-safe, it's already fixed by official nodejs dev since node v16.
- Fixed can't reply directly to the incoming mail from contact.
- Update database.
- Update postman file.
- Upgrade Fastify to 4.27.x.
- Upgrade dependencies.

Date: 17 Jan 2024

Version: 1.3.0

- Now support adding custom field on user data when registering new user via API.
- Fixed updating user will not always replacing old custom data field.
- Fixed global modal for change password, sometimes could injected by browser after login.
- Upgrade Fastify to 4.25.x.
- Update PDF Documentation.
- Upgrade dependencies.
- No Longer support NodeJS 14.

Date: 23 Oct 2023

Version: 1.2.0

- Add switcher light or dark theme.
- Add new inverse theme.
- Now Support Docker and Docker Compose.
- Extend username length up to 64 chars, RFC 5321.
- Fixed date format on export.
- Removed Redis and base-64 dependencies.
- Add Email Logo link from configuration.
- Upgrade dependencies.
- Update pdf documentation.
- Update configuration.
- Update server.js.
- Update template.

Date: 01 Aug 2023

Version: 1.1.0

- Add Oauth for Apple ID.
- Update email for reset password.
- Update config.
- Update dependencies.
- Update postman file.
- Update docs about API.
- Add docs how to upgrade.

Date: 20 Mar 2023

Version: 1.0.0

- First Release