👋 Welcome!

Masks is a self-hostable auth server. It is highly customizable, feature-rich, and aims to provide a complete, open-source, end-to-end solution for securing apps written in any language.

Danger

Masks is unstable. Do not use it except for research purposes.

Get started

• Explore masks with screenshots, demos, and examples
• Protect your homelab with a self-hosted masks server…
• Add auth to a Rails app or a web/mobile app…

Features

• OTP, Twilio, and Webauthn support
• Social sign-in with common & generic providers
• Built-in support for captchas and rate-limiting
• Standards-compliant OpenID Connect & OAuth 2 server
• Client libraries for Ruby and/or JS applications ¹
• Web and CLI management for admins
• And more…

Further reading

• For technical-folk, more on how it works…
• Learn to deploy and configure masks
• Check out the developer reference
• Contribute issues, code, and more

---

Footnotes

1. You can integrate any application with masks using libraries for OpenID or OAuth2, since it supports these standards by default. ↩