Item detail
github.com

casdoor/casdoor

casdoor/casdoor is a code repository that RepoRadar is tracking in its Agent auth section, currently rated Gold tier with a 'try now' verdict. It is written primarily in Go. Its strongest signal is workflow potential, scored 9.6 out of 10.

Score8.1
Popularity100.0
Riskconditional
TierGold
Score breakdown
Usefulness8.5
Novelty7.1
Momentum8.0
Maturity8.5
Open-source/build8.4
Evidence7.2
Workflow potential9.6
Setup ease4.2

Popularity is tracked separately. Support, ads, sponsorships, and tips never affect these signals.

Why it matters

Casdoor is worth adding because AI tools are quickly becoming account-bearing systems that need real identity, consent, and audit trails. The project has years of maintenance, a large community, current releases, full docs, and mainstream auth protocols instead of a one-off token gate. The risk is inherent: it sits in front of user identity, OAuth clients, MFA, and protected resources, so teams

Who should use it

Teams putting MCP servers or agent gateways behind proper identity controlsPlatform engineers who need OAuth/OIDC/SAML rather than ad hoc shared API keysSecurity teams evaluating audit logs, MFA, and user authorization around AI-facing services

Who should skip it

Pass on casdoor/casdoor if you need something non-technical and turnkey rather than a tool that requires comfort with CLI, dependencies, or system configuration.

About this signal

casdoor/casdoor is tracked by RepoRadar as a code repository in the Agent auth section. It was first seen on 2026-07-11 and last updated on 2026-07-11. The current verdict is 'try now' with a Gold tier and hard setup difficulty. casdoor/casdoor leads on workflow potential (9.6) and practical usefulness (8.5); its lowest signal is setup ease (4.2), so factor that in before investing setup time. This page summarizes the public evidence on the linked source page and states where additional review is still needed. The score, tier, risk label, and verdict on this page are never influenced by sponsorship, ads, or tips — they reflect only the usefulness, popularity, novelty, momentum, maturity, and evidence signals described in the RepoRadar methodology.

How this item is evaluated

RepoRadar assigned casdoor/casdoor a composite score of 8.1 out of 10, placing it in the Gold tier. This score combines weighted sub-signals: usefulness (35%), novelty (18%), momentum (14%), maturity (10%), open-source/build quality (7%), evidence quality (6%), workflow potential (6%), and setup ease (4%). Popularity is tracked separately at 100.0 and never affects the composite score or tier. The risk label of 'conditional' reflects inherent user-impacting hazards, not generic novelty. Items with no risk flag may still require normal code review before production use.

Putting this into practice? Read How to vet an AI agent or MCP server before you wire it in for the checklist behind this score.

Risk explanation

Identity infrastructure handles credentials, OAuth clients, MFA, audit logs, and protected resources; misconfiguration can expose real accounts or weaken access control; Agent and MCP gateway use should be threat-modeled separately from normal web SSO because tool calls may access sensitive downstream systems.

Evidence links
Closest alternatives / related signals
iamssomcp-gatewayagent-authoauthoidcsamlmfa