Casdoor
by casdoor
An open-source AI-first Identity and Access Management (IAM) /AI MCP & agent gateway and auth server with web UI supporting MCP, A2A, OAuth 2.1, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD
No known CVEs
Apache-2.0 license
Actively maintained
Last commit 2d ago
Works with most clients
Transport: sse
0 tools
Grade F
Step 1
Install in your client
Config is the same across clients — only the file and path differ.
CD
Supported in Claude Desktopsse · Node 18+
Paste into ~/Library/Application Support/Claude/claude_desktop_config.json
{
"mcpServers": {
"casdoor": {
"command": "<see-readme>",
"args": []
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
Embed in your READMEAbout badges →
[](https://mcppedia.org/s/casdoor)
Read me
What Casdoor does
Supporting MCP, A2A, OAuth 2.0, OIDC (OAuth 2.x), SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD, and more.
Test This Server
This server supports HTTP transport. Be the first to test it — help the community know if it works.
Scored, not listed
Why this score
Five weighted categories — click any category to see the underlying evidence.
Score breakdown
43/100across 5 weighted dimensions
0255075100
15
12
10
−57
Security
Maintenance
Efficiency
Documentation
Compatibility
Categoriesclick a row to see evidence
Security
OSV.devNo known CVEs.
No package registry to scan.
Community
Reviews
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
How easy was setup?Did it work reliably?How was the documentation?
Sign in to write a review.
Frequently Asked Questions
- Is Casdoor safe to use?
- Casdoor has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.
- How do I install Casdoor?
- Casdoor can be installed by cloning its GitHub repository and following the setup instructions in the README.
- What AI clients work with Casdoor?
- Casdoor is compatible with claude-desktop, cursor, claude-code. It uses sse transport.
- Is Casdoor actively maintained?
- Casdoor is actively maintained — last commit was 2 days ago. It has 13,633 GitHub stars.
Related
Similar servers
Others in security
Evil Mcp Server93An evil MCP server used for redteam testing
30 1
Ida Pro Mcp92AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.
8.6k 3
Mcpki Server92mcpki-server is the backend infrastructure for https://www.mcpki.org, enabling secure public key management and autonomous certificate handling for large language models (LLMs).
10
Iam Policy Autopilot90IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.
361 1
MCP Security Weekly
Get CVE alerts and security updates for Casdoor and similar servers.
Community
Discussion
Start a conversation
Ask a question, share a tip, or report an issue.
Has anyone used this with Cursor?How do you handle auth?Any alternatives?
Sign in to join the discussion.