authorizer/README.md

<p align="center">
  <a href="https://authorizer.dev">
    <img alt="Logo" src="https://authorizer.dev/images/logo.png" width="60" />
  </a>
</p>
<h1 align="center">
  Authorizer
</h1>

**Authorizer** is an open-source authentication and authorization solution for your applications. Bring your database and have complete control over the user information. You can self-host authorizer instances and connect to any database (Currently supports 11+ databases including [Postgres](https://www.postgresql.org/), [MySQL](https://www.mysql.com/), [SQLite](https://www.sqlite.org/index.html), [SQLServer](https://www.microsoft.com/en-us/sql-server/), [YugaByte](https://www.yugabyte.com/),  [MariaDB](https://mariadb.org/), [PlanetScale](https://planetscale.com/), [CassandraDB](https://cassandra.apache.org/_/index.html), [ScyllaDB](https://www.scylladb.com/), [MongoDB](https://mongodb.com/), [ArangoDB](https://www.arangodb.com/)).

For more information check:

- [Docs](http://docs.authorizer.dev/)
- [Discord Community](https://discord.gg/Zv2D5h6kkK)
- [Contributing Guide](https://github.com/authorizerdev/authorizer/blob/main/.github/CONTRIBUTING.md)

# Introduction

<img src="https://docs.authorizer.dev/images/authorizer-arch.png" style="height:20em"/>

#### We offer the following functionality

- ✅ Sign-in / Sign-up with email ID and password
- ✅ Secure session management
- ✅ Email verification
- ✅ OAuth2 and OpenID compatible APIs
- ✅ APIs to update profile securely
- ✅ Forgot password flow using email
- ✅ Social logins (Google, Github, Facebook, LinkedIn, Apple more coming soon)
- ✅ Role-based access management
- ✅ Password-less login with magic link login
- ✅ Multi factor authentication
- ✅ Email templating
- ✅ Webhooks

## Roadmap

- [VueJS SDK](https://github.com/authorizerdev/authorizer-vue)
- [Svelte SDK](https://github.com/authorizerdev/authorizer-svelte)
- [Golang SDK](https://github.com/authorizerdev/authorizer-go)
- React Native SDK
- Flutter SDK
- Android Native SDK
- iOS native SDK
- Python SDK
- PHP SDK
- WordPress plugin
- Kubernetes Helm Chart
- [Local Stack](https://github.com/localstack/localstack)
- AMI
- Digital Ocean Droplet
- Azure
- Render
- Edge Deployment using Fly.io
- Password-less login with mobile number and OTP SMS

# Getting Started

## Step 1: Get Authorizer Instance

### Deploy Production Ready Instance

Deploy production ready Authorizer instance using one click deployment options available below

| **Infra provider** |                                                                                            **One-click link**                                                                                            |               **Additional information**               |
| :----------------: | :------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------: | :----------------------------------------------------: |
|    Railway.app     |                    <a href="https://railway.app/new/template/nwXp1C?referralCode=FEF4uT"><img src="https://railway.app/button.svg" style="height: 44px" alt="Deploy on Railway"></a>                     | [docs](https://docs.authorizer.dev/deployment/railway) |
|       Heroku       | <a href="https://heroku.com/deploy?template=https://github.com/authorizerdev/authorizer-heroku"><img src="https://www.herokucdn.com/deploy/button.svg" alt="Deploy to Heroku" style="height: 44px;"></a> | [docs](https://docs.authorizer.dev/deployment/heroku)  |
|       Render       |                     [![Deploy to Render](https://render.com/images/deploy-to-render-button.svg)](https://render.com/deploy?repo=https://github.com/authorizerdev/authorizer-render)                      | [docs](https://docs.authorizer.dev/deployment/render)  |
|       Koyeb       | <a target="_blank" href="https://app.koyeb.com/deploy?name=authorizer&type=docker&image=docker.io/lakhansamani/authorizer&env[PORT]=8000&env[DATABASE_TYPE]=postgres&env[DATABASE_URL]=CHANGE_ME&ports=8000;http;/"><img alt="Deploy to Koyeb" src="https://www.koyeb.com/static/images/deploy/button.svg" /></a> | [docs](https://docs.authorizer.dev/deployment/koyeb)  |

### Deploy Authorizer Using Source Code

This guide helps you practice using Authorizer to evaluate it before you use it in a production environment. It includes instructions for installing the Authorizer server in local or standalone mode.

#### Install using source code

#### Prerequisites

- OS: Linux or macOS or windows
- Go: (Golang)(https://golang.org/dl/) >= v1.15

#### Project Setup

1. Fork the [authorizer](https://github.com/authorizerdev/authorizer) repository (**Skip this step if you have access to repo**)
2. Clone repo: `git clone https://github.com/authorizerdev/authorizer.git` or use the forked url from step 1
3. Change directory to authorizer: `cd authorizer`
4. Create Env file `cp .env.sample .env`. Check all the supported env [here](https://docs.authorizer.dev/core/env/)
5. Build Dashboard `make build-dashboard`
6. Build App `make build-app`
7. Build Server `make clean && make`
   > Note: if you don't have [`make`](https://www.ibm.com/docs/en/aix/7.2?topic=concepts-make-command), you can `cd` into `server` dir and build using the `go build` command. In that case you will have to build `dashboard` & `app` manually using `npm run build` on both dirs.
8. Run binary `./build/server`

### Deploy Authorizer using binaries

Deploy / Try Authorizer using binaries. With each [Authorizer Release](https://github.com/authorizerdev/authorizer/releases)
binaries are baked with required deployment files and bundled. You can download a specific version of it for the following operating systems:

- Mac OSX
- Linux

#### Download and unzip bundle

- Download the Bundle for the specific OS from the [release page](https://github.com/authorizerdev/authorizer/releases)

> Note: For windows, we recommend running using docker image to run authorizer.

- Unzip using following command

  - Mac / Linux

  ```sh
  tar -zxf AUTHORIZER_VERSION -c authorizer
  ```

- Change directory to `authorizer`

  ```sh
  cd authorizer
  ```

#### Step 3: Start Authorizer

- Run following command to start authorizer

  - For Mac / Linux users

  ```sh
  ./build/server
  ```

> Note: For mac users, you might have to give binary the permission to execute. Here is the command you can use to grant permission `xattr -d com.apple.quarantine build/server`

## Step 2: Setup Instance

- Open authorizer instance endpoint in browser
- Sign up as an admin with a secure password
- Configure environment variables from authorizer dashboard. Check env [docs](/core/env) for more information

> Note: `DATABASE_URL`, `DATABASE_TYPE` and `DATABASE_NAME` are only configurable via platform envs

### Things to consider

- For social logins, you will need respective social platform key and secret
- For having verified users, you will need an SMTP server with an email address and password using which system can send emails. The system will send a verification link to an email address. Once an email is verified then, only able to access it.
  > Note: One can always disable the email verification to allow open sign up, which is not recommended for production as anyone can use anyone's email address 😅
- For persisting user sessions, you will need Redis URL (not in case of railway app). If you do not configure a Redis server, sessions will be persisted until the instance is up or not restarted. For better response time on authorization requests/middleware, we recommend deploying Redis on the same infra/network as your authorizer server.

## Testing

- Check the testing instructions [here](https://github.com/authorizerdev/authorizer/blob/main/.github/CONTRIBUTING.md#testing)

## Integrating into your website

This example demonstrates how you can use [`@authorizerdev/authorizer-js`](/authorizer-js/getting-started) CDN version and have login ready for your site in few seconds. You can also use the ES module version of [`@authorizerdev/authorizer-js`](/authorizer-js/getting-started) or framework-specific versions like [`@authorizerdev/authorizer-react`](/authorizer-react/getting-started)

### Copy the following code in `html` file

> **Note:** Change AUTHORIZER_URL in the below code with your authorizer URL. Also, you can change the logout button component

```html
<script src="https://unpkg.com/@authorizerdev/authorizer-js/lib/authorizer.min.js"></script>

<script type="text/javascript">
	const authorizerRef = new authorizerdev.Authorizer({
		authorizerURL: `YOUR_AUTHORIZER_INSTANCE_URL`,
		redirectURL: window.location.origin,
		clientID: 'YOUR_CLIENT_ID', // obtain your client id from authorizer dashboard
	});

	// use the button selector as per your application
	const logoutBtn = document.getElementById('logout');
	logoutBtn.addEventListener('click', async function () {
		await authorizerRef.logout();
		window.location.href = '/';
	});

	async function onLoad() {
		const res = await authorizerRef.authorize({
			response_type: 'code',
			use_refresh_token: false,
		});
		if (res && res.access_token) {
			// you can use user information here, eg:
			const user = await authorizerRef.getProfile({
				Authorization: `Bearer ${res.access_token}`,
			});
			const userSection = document.getElementById('user');
			const logoutSection = document.getElementById('logout-section');
			logoutSection.classList.toggle('hide');
			userSection.innerHTML = `Welcome, ${user.email}`;
		}
	}
	onLoad();
</script>
```

---

### Support my work

<a href="https://www.buymeacoffee.com/lakhansamani" target="_blank"><img src="https://cdn.buymeacoffee.com/buttons/v2/default-yellow.png" alt="Buy Me A Coffee" style="height: 60px !important;width: 217px !important;" ></a>
Update README.md 2021-09-05 05:25:51 +00:00			`<p align="center">`
			`<a href="https://authorizer.dev">`
Add log for host url 2022-01-30 18:14:37 +00:00			`<img alt="Logo" src="https://authorizer.dev/images/logo.png" width="60" />`
Update README.md 2021-09-05 05:25:51 +00:00			`</a>`
			`</p>`
			`<h1 align="center">`
			`Authorizer`
			`</h1>`

Update README.md 2022-09-09 03:59:27 +00:00			Authorizer is an open-source authentication and authorization solution for your applications. Bring your database and have complete control over the user information. You can self-host authorizer instances and connect to any database (Currently supports 11+ databases including [Postgres](https://www.postgresql.org/), [MySQL](https://www.mysql.com/), [SQLite](https://www.sqlite.org/index.html), [SQLServer](https://www.microsoft.com/en-us/sql-server/), [YugaByte](https://www.yugabyte.com/), [MariaDB](https://mariadb.org/), [PlanetScale](https://planetscale.com/), [CassandraDB](https://cassandra.apache.org/_/index.html), [ScyllaDB](https://www.scylladb.com/), [MongoDB](https://mongodb.com/), [ArangoDB](https://www.arangodb.com/)).
Update README.md 2021-09-05 05:25:51 +00:00
Update README.md 2022-09-15 06:54:47 +00:00			`For more information check:`
fix: readme 2021-09-18 07:48:08 +00:00
Update README.md 2021-09-05 05:25:51 +00:00			`- [Docs](http://docs.authorizer.dev/)`
Update README.md 2022-09-15 06:54:47 +00:00			`- [Discord Community](https://discord.gg/Zv2D5h6kkK)`
			`- [Contributing Guide](https://github.com/authorizerdev/authorizer/blob/main/.github/CONTRIBUTING.md)`
Update README.md 2021-09-05 05:25:51 +00:00
			`# Introduction`

Update README.md 2022-09-09 04:54:30 +00:00			`<img src="https://docs.authorizer.dev/images/authorizer-arch.png" style="height:20em"/>`
Update README.md 2021-09-05 05:25:51 +00:00
			`#### We offer the following functionality`

			`- ✅ Sign-in / Sign-up with email ID and password`
			`- ✅ Secure session management`
			`- ✅ Email verification`
Update README.md 2022-03-26 01:30:01 +00:00			`- ✅ OAuth2 and OpenID compatible APIs`
Update README.md 2021-09-05 05:25:51 +00:00			`- ✅ APIs to update profile securely`
			`- ✅ Forgot password flow using email`
Update README.md 2022-08-15 16:58:43 +00:00			`- ✅ Social logins (Google, Github, Facebook, LinkedIn, Apple more coming soon)`
Update README.md 2021-09-21 02:58:40 +00:00			`- ✅ Role-based access management`
Update README.md 2022-03-26 01:30:01 +00:00			`- ✅ Password-less login with magic link login`
Update README.md 2022-08-15 16:58:13 +00:00			`- ✅ Multi factor authentication`
			`- ✅ Email templating`
			`- ✅ Webhooks`
chore: update authorizer-react 2021-10-03 20:07:28 +00:00
Update README.md 2021-09-05 05:25:51 +00:00			`## Roadmap`

Update README.md 2022-09-15 06:54:47 +00:00			`- [VueJS SDK](https://github.com/authorizerdev/authorizer-vue)`
			`- [Svelte SDK](https://github.com/authorizerdev/authorizer-svelte)`
			`- [Golang SDK](https://github.com/authorizerdev/authorizer-go)`
Update README.md 2021-09-05 05:25:51 +00:00			`- React Native SDK`
			`- Flutter SDK`
			`- Android Native SDK`
			`- iOS native SDK`
			`- Python SDK`
			`- PHP SDK`
			`- WordPress plugin`
			`- Kubernetes Helm Chart`
			`- [Local Stack](https://github.com/localstack/localstack)`
			`- AMI`
			`- Digital Ocean Droplet`
			`- Azure`
			`- Render`
			`- Edge Deployment using Fly.io`
			`- Password-less login with mobile number and OTP SMS`

			`# Getting Started`

fix: getting started 2022-03-17 04:01:40 +00:00			`## Step 1: Get Authorizer Instance`
Update README.md 2021-09-05 05:25:51 +00:00
fix: getting started 2022-03-17 04:01:40 +00:00			`### Deploy Production Ready Instance`

			`Deploy production ready Authorizer instance using one click deployment options available below`

chore: update railway template 2022-08-31 07:39:00 +00:00			`\| Infra provider \| One-click link \| Additional information \|`
			`\| :----------------: \| :------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------: \| :----------------------------------------------------: \|`
			`\| Railway.app \| <a href="https://railway.app/new/template/nwXp1C?referralCode=FEF4uT"><img src="https://railway.app/button.svg" style="height: 44px" alt="Deploy on Railway"></a> \| [docs](https://docs.authorizer.dev/deployment/railway) \|`
			`\| Heroku \| <a href="https://heroku.com/deploy?template=https://github.com/authorizerdev/authorizer-heroku"><img src="https://www.herokucdn.com/deploy/button.svg" alt="Deploy to Heroku" style="height: 44px;"></a> \| [docs](https://docs.authorizer.dev/deployment/heroku) \|`
			`\| Render \| [![Deploy to Render](https://render.com/images/deploy-to-render-button.svg)](https://render.com/deploy?repo=https://github.com/authorizerdev/authorizer-render) \| [docs](https://docs.authorizer.dev/deployment/render) \|`
Add button to deploy to Koyeb 2023-09-01 12:30:44 +00:00			`\| Koyeb \| <a target="_blank" href="https://app.koyeb.com/deploy?name=authorizer&type=docker&image=docker.io/lakhansamani/authorizer&env[PORT]=8000&env[DATABASE_TYPE]=postgres&env[DATABASE_URL]=CHANGE_ME&ports=8000;http;/"><img alt="Deploy to Koyeb" src="https://www.koyeb.com/static/images/deploy/button.svg" /></a> \| [docs](https://docs.authorizer.dev/deployment/koyeb) \|`
fix: getting started 2022-03-17 04:01:40 +00:00
			`### Deploy Authorizer Using Source Code`
Update README.md 2021-09-05 05:25:51 +00:00
fix: getting started 2022-03-17 04:01:40 +00:00			`This guide helps you practice using Authorizer to evaluate it before you use it in a production environment. It includes instructions for installing the Authorizer server in local or standalone mode.`
fix: readme 2021-09-18 07:48:08 +00:00
fix: getting started 2022-03-17 04:01:40 +00:00			`#### Install using source code`
Update README.md 2021-09-18 07:43:01 +00:00
fix: getting started 2022-03-17 04:01:40 +00:00			`#### Prerequisites`
Update README.md 2021-09-18 07:43:01 +00:00
			`- OS: Linux or macOS or windows`
			`- Go: (Golang)(https://golang.org/dl/) >= v1.15`

fix: getting started 2022-03-17 04:01:40 +00:00			`#### Project Setup`
Update README.md 2021-09-18 07:43:01 +00:00
			`1. Fork the [authorizer](https://github.com/authorizerdev/authorizer) repository (Skip this step if you have access to repo)`
chore: update project setup info 2022-02-02 07:47:35 +00:00			2. Clone repo: `git clone https://github.com/authorizerdev/authorizer.git` or use the forked url from step 1
			3. Change directory to authorizer: `cd authorizer`
fix: getting started 2022-03-17 04:01:40 +00:00			4. Create Env file `cp .env.sample .env`. Check all the supported env [here](https://docs.authorizer.dev/core/env/)
			5. Build Dashboard `make build-dashboard`
			6. Build App `make build-app`
			7. Build Server `make clean && make`
Update README.md 2022-07-20 17:38:48 +00:00			> Note: if you don't have [`make`](https://www.ibm.com/docs/en/aix/7.2?topic=concepts-make-command), you can `cd` into `server` dir and build using the `go build` command. In that case you will have to build `dashboard` & `app` manually using `npm run build` on both dirs.
fix: getting started 2022-03-17 04:01:40 +00:00			8. Run binary `./build/server`
Update README.md 2021-09-18 07:43:01 +00:00
fix: getting started 2022-03-17 04:01:40 +00:00			`### Deploy Authorizer using binaries`
Update README.md 2021-09-18 07:43:01 +00:00
			`Deploy / Try Authorizer using binaries. With each [Authorizer Release](https://github.com/authorizerdev/authorizer/releases)`
			`binaries are baked with required deployment files and bundled. You can download a specific version of it for the following operating systems:`

			`- Mac OSX`
			`- Linux`

fix: getting started 2022-03-17 04:01:40 +00:00			`#### Download and unzip bundle`
Update README.md 2021-09-18 07:43:01 +00:00
			`- Download the Bundle for the specific OS from the [release page](https://github.com/authorizerdev/authorizer/releases)`

chore: fix docker build 2021-10-28 01:47:44 +00:00			`> Note: For windows, we recommend running using docker image to run authorizer.`
Update README.md 2021-09-18 07:43:01 +00:00
			`- Unzip using following command`

			`- Mac / Linux`

			```sh
			`tar -zxf AUTHORIZER_VERSION -c authorizer`
			```

			- Change directory to `authorizer`

			```sh
			`cd authorizer`
			```

fix: getting started 2022-03-17 04:01:40 +00:00			`#### Step 3: Start Authorizer`
Update README.md 2021-09-18 07:43:01 +00:00
			`- Run following command to start authorizer`
fix: readme 2021-09-18 07:48:08 +00:00
Update README.md 2021-09-18 07:43:01 +00:00			`- For Mac / Linux users`

			```sh
			`./build/server`
			```
fix: readme 2021-09-18 07:48:08 +00:00
Update README.md 2021-09-18 07:43:01 +00:00			> Note: For mac users, you might have to give binary the permission to execute. Here is the command you can use to grant permission `xattr -d com.apple.quarantine build/server`

fix: getting started 2022-03-17 04:01:40 +00:00			`## Step 2: Setup Instance`
Update README.md 2021-09-05 05:25:51 +00:00
fix: getting started 2022-03-17 04:01:40 +00:00			`- Open authorizer instance endpoint in browser`
			`- Sign up as an admin with a secure password`
			`- Configure environment variables from authorizer dashboard. Check env [docs](/core/env) for more information`

			> Note: `DATABASE_URL`, `DATABASE_TYPE` and `DATABASE_NAME` are only configurable via platform envs
feat: add instruction for railway.app 2021-12-11 17:37:19 +00:00
Update README.md 2021-09-05 05:25:51 +00:00			`### Things to consider`

			`- For social logins, you will need respective social platform key and secret`
			`- For having verified users, you will need an SMTP server with an email address and password using which system can send emails. The system will send a verification link to an email address. Once an email is verified then, only able to access it.`
			`> Note: One can always disable the email verification to allow open sign up, which is not recommended for production as anyone can use anyone's email address 😅`
fix: getting started 2022-03-17 04:01:40 +00:00			`- For persisting user sessions, you will need Redis URL (not in case of railway app). If you do not configure a Redis server, sessions will be persisted until the instance is up or not restarted. For better response time on authorization requests/middleware, we recommend deploying Redis on the same infra/network as your authorizer server.`
Update README.md 2021-09-05 05:25:51 +00:00
Update README.md 2021-12-20 13:08:17 +00:00			`## Testing`

Update README.md 2021-12-24 04:36:39 +00:00			`- Check the testing instructions [here](https://github.com/authorizerdev/authorizer/blob/main/.github/CONTRIBUTING.md#testing)`
Update README.md 2021-12-20 13:08:17 +00:00
Update README.md 2021-09-05 05:25:51 +00:00			`## Integrating into your website`

			This example demonstrates how you can use [`@authorizerdev/authorizer-js`](/authorizer-js/getting-started) CDN version and have login ready for your site in few seconds. You can also use the ES module version of [`@authorizerdev/authorizer-js`](/authorizer-js/getting-started) or framework-specific versions like [`@authorizerdev/authorizer-react`](/authorizer-react/getting-started)

			### Copy the following code in `html` file

			`> Note: Change AUTHORIZER_URL in the below code with your authorizer URL. Also, you can change the logout button component`

			```html
			`<script src="https://unpkg.com/@authorizerdev/authorizer-js/lib/authorizer.min.js"></script>`

			`<script type="text/javascript">`
fix: readme 2021-09-18 07:48:08 +00:00			`const authorizerRef = new authorizerdev.Authorizer({`
fix: update readme.md 2022-03-17 04:03:55 +00:00			authorizerURL: `YOUR_AUTHORIZER_INSTANCE_URL`,
fix: readme 2021-09-18 07:48:08 +00:00			`redirectURL: window.location.origin,`
fix: getting started 2022-03-17 04:01:40 +00:00			`clientID: 'YOUR_CLIENT_ID', // obtain your client id from authorizer dashboard`
fix: readme 2021-09-18 07:48:08 +00:00			`});`

			`// use the button selector as per your application`
			`const logoutBtn = document.getElementById('logout');`
			`logoutBtn.addEventListener('click', async function () {`
			`await authorizerRef.logout();`
			`window.location.href = '/';`
			`});`

			`async function onLoad() {`
fix: getting started 2022-03-17 04:01:40 +00:00			`const res = await authorizerRef.authorize({`
			`response_type: 'code',`
			`use_refresh_token: false,`
			`});`
			`if (res && res.access_token) {`
fix: readme 2021-09-18 07:48:08 +00:00			`// you can use user information here, eg:`
fix: getting started 2022-03-17 04:01:40 +00:00			`const user = await authorizerRef.getProfile({`
			Authorization: `Bearer ${res.access_token}`,
			`});`
			`const userSection = document.getElementById('user');`
			`const logoutSection = document.getElementById('logout-section');`
			`logoutSection.classList.toggle('hide');`
			userSection.innerHTML = `Welcome, ${user.email}`;
fix: readme 2021-09-18 07:48:08 +00:00			`}`
			`}`
			`onLoad();`
Update README.md 2021-09-05 05:25:51 +00:00			`</script>`
			```
Update README.md 2021-12-09 03:47:32 +00:00
			`---`

			`### Support my work`

			`<a href="https://www.buymeacoffee.com/lakhansamani" target="_blank"><img src="https://cdn.buymeacoffee.com/buttons/v2/default-yellow.png" alt="Buy Me A Coffee" style="height: 60px !important;width: 217px !important;" ></a>`