Apache-2.0 is the listed open-source license in the public project materials.
Zitadel
Open-source identity platform for OIDC, OAuth2, authentication flows, and multi-tenant identity use cases.
Where it fits
Teams that want a cloud-native identity platform they can run in their own infrastructure.
Watch points
Self-hosted operation should be tested for high availability, migrations, and compliance logging.
Score breakdown
Zitadel has public source and self-managed deployment paths; score reflects the expected operating footprint for identity.
A self-hosted deployment keeps primary data under operator control, with migration and backup quality depending on the deployment design.
Privacy posture depends on configuration, telemetry, retention, and integration choices documented or implied by the public project materials.
The project exposes standard web, API, protocol, or integration surfaces appropriate to identity.
The score reflects maintenance burden, release maturity, and the operational complexity implied by running this class of software.
It can be deployed in an EU-controlled environment; procurement fit still depends on support, contracts, accessibility, and hosting choices.
Ownership and development are publicly visible through the linked project materials, but governance depth should be reviewed before procurement.
Review notes
Seed listing for the Sovereign Web Stack catalog. Treat this score as an evidence-backed starting point: contributors should improve it with more specific public links, deployment notes, security posture, export documentation, and governance evidence as the index matures.
Methodology note
This project is scored against the public Sovereign Web Stack methodology. Review the full scoring model before comparing tools across categories.