Skip to main content

Casdoor


Identity & Access Management for the AI Agent era. The first open-source IAM platform with native MCP server, OAuth 2.1 for AI agents, and full support for OAuth 2.0, OIDC, SAML, CAS, LDAP, WebAuthn, MFA, and 100+ identity providers.


Get StartedOnline Demo
CNCF LandscapeCasdoor is part of CNCF Landscape
Online Demo

AI Agent Identity & MCP Server

Built-in MCP server with Streamable HTTP lets AI agents manage Casdoor in natural language. OAuth 2.1 for agents with Dynamic Client Registration, per-tool permissions, and secure agent-to-agent auth. Learn more about MCP.

Enterprise-Grade Authentication

Go from zero to production in minutes. An intuitive console for auth and authorization, built for teams and scale.

Modern Architecture

Clean frontend-backend separation, fast web UI, and horizontal scalability for high concurrency.

SaaS Management Platform

Full SaaS billing: plans, pricing tiers, and payment providers. Manage products, subscriptions, and revenue in one place. SaaS docs.

Casdoor work principle

As a comprehensive authentication and authorization platform, Casdoor delivers enterprise-grade identity management through seamless integration with leading identity providers and sophisticated user authentication workflows.

MCP & AI Agent Authentication

Casdoor provides a built-in MCP server that lets AI agents manage users, applications, and permissions through natural language. Every MCP tool call is authenticated and authorized with fine-grained, scope-based permissions.

Configure AI tools like Claude Desktop, Cursor, or any MCP-compatible client to connect to Casdoor's MCP endpoint. See our MCP documentation for setup instructions and secure token management.

{
  "mcpServers": {
    "casdoor": {
      "url": "https://your-casdoor.com/api/mcp",
      "headers": {
        "Authorization": "Bearer <access_token>"
      }
    }
  }
}

Works with AI Tools

Claude Desktop
Cursor
Windsurf
VS Code + GitHub Copilot
Any MCP Client

SDK and Integration

The Casdoor SDK offers a complete suite of features including identity authentication, user management, and resource uploads. Integration is straightforward and well-documented—visit How to Connect to Casdoor to get started quickly.

login() {
  Setting.signin().then((res) => {
    if (res.status === "ok") {
      Setting.showMessage("success", "Logged in successfully");
      Setting.goToLink("/");
    } else {
      this.setState({
        msg: res.msg,
      });
    }
  });
}

Login & Identity Providers

Casdoor is an enterprise-grade authentication platform that supports over 100 identity providers, enabling users to sign in with their preferred social networks and enterprise identity systems.

GoogleGitHubFacebookTwitterLinkedInWeiboWeChatQQDingTalkGiteeWeComEmailSMS

Enable third-party authentication to provide users with flexible sign-in options across social networks and enterprise identity providers. Casdoor's extensible architecture supports custom authentication plugins for specialized requirements.

For more information about identity providers, visit our provider documentation. If you require additional providers, please submit a request to our community.

User Registration

Casdoor provides streamlined direct user registration. New users can sign up by providing their Username, Display Name, Password, and Email. After receiving and entering the verification Email Code, registration is complete.

Password Recovery

Casdoor provides secure password recovery functionality. To reset your password, enter the username, email, or phone number associated with your account. You'll receive a verification code via email or SMS. Simply enter the code along with your new password to complete the reset process.

Who's using Casdoor?

Casdoor powers authentication for hundreds of projects worldwide, from Fortune 500 companies to innovative startups. To see what's possible with Casdoor, check out these apps!