Casdoor
Identity & Access Management for the AI Agent era. The first open-source IAM platform with native MCP server, OAuth 2.1 for AI agents, and full support for OAuth 2.0, OIDC, SAML, CAS, LDAP, WebAuthn, MFA, and 100+ identity providers.
AI Agent Identity & MCP Server
Built-in MCP server with Streamable HTTP enables AI agents to manage Casdoor via natural language. Features OAuth 2.1 for AI agents with Dynamic Client Registration (RFC 7591), Authorization Server Metadata (RFC 8414), Resource Indicators (RFC 8707), and per-tool permission control for secure agent-to-agent authentication. Learn more about MCP.
Enterprise-Grade Authentication
Deploy a production-ready Casdoor application in minutes. Streamline authentication and authorization management with an intuitive interface designed for enterprise needs.
Modern Architecture
Built with a modern frontend-backend separation architecture, Casdoor delivers an intuitive web UI with exceptional performance and scalability for high-concurrency environments.
SaaS Management Platform
Comprehensive SaaS subscription and payment management with support for multiple plans, pricing tiers, and payment providers. Manage products, subscriptions, and transactions seamlessly. To learn more, visit SaaS Management documentation.
As a comprehensive authentication and authorization platform, Casdoor delivers enterprise-grade identity management through seamless integration with leading identity providers and sophisticated user authentication workflows.
MCP & AI Agent Authentication
Casdoor provides a built-in MCP server that lets AI agents manage users, applications, and permissions through natural language. Every MCP tool call is authenticated and authorized with fine-grained, scope-based permissions.
Configure AI tools like Claude Desktop, Cursor, or any MCP-compatible client to connect to Casdoor's MCP endpoint. See our MCP documentation for setup instructions and secure token management.
- claude_desktop_config.json
{"mcpServers": {"casdoor": {"url": "https://your-casdoor.com/api/mcp","headers": {"Authorization": "Bearer <access_token>"}}}}
Works with AI Tools
- login.js
login() {Setting.signin().then((res) => {if (res.status === "ok") {Setting.showMessage("success", "Logged in successfully");Setting.goToLink("/");} else {this.setState({msg: res.msg,});}});}
Casdoor is an enterprise-grade authentication platform that supports over 100 identity providers, enabling users to sign in with their preferred social networks and enterprise identity systems.
Enable third-party authentication to provide users with flexible sign-in options across social networks and enterprise identity providers. Casdoor's extensible architecture supports custom authentication plugins for specialized requirements.
For more information about identity providers, visit our provider documentation. If you require additional providers, please submit a request to our community.
Casdoor provides streamlined direct user registration. New users can sign up by providing their Username, Display Name, Password, and Email. After receiving and entering the verification Email Code, registration is complete.
Casdoor provides secure password recovery functionality. To reset your password, enter the username, email, or phone number associated with your account. You'll receive a verification code via email or SMS. Simply enter the code along with your new password to complete the reset process.
Who's using Casdoor?
Casdoor powers authentication for hundreds of projects worldwide, from Fortune 500 companies to innovative startups. To see what's possible with Casdoor, check out these apps!
