open Source... packaged for enterprise
Gluu Flex is a commercial distribution of the Linux Foundation Janssen Project. It was created for businesses who want the protections of a commercial license, plus some additional tools convenient for enterprise scale. Flex is built from Janssen Project components, so migrating to or from the open source distribution is easy–just update your configuration.


Gluu Flex Components
Flex is Gluu’s flagship product–a commercial Identity Provider with an open source core. It includes all the components found in the Linux Foundation Janssen Project, plus the Flex Admin UI, a fancy web interface with extra reporting and enterprise tools. With Gluu Flex, you get all the transparency of open source but the support and assurances of a commercial distribution.
Common use cases include:
- OpenID Federation
- SAML Federation
- Single sign-on (SSO)
- Mobile authentication
- Identity Orchestration
- API client management and dynamic registration
- Multi-factor authentication (MFA) / passwordless
- Active Directory or Keycloak synchronization
- Self-Service credential management
- Open Banking
- Optional deployment profile that is conformant with DISA STIG requirements for Red Hat linux.
- OAuth Federation through the publication of Software Statement key material
- Internal identity connection via SCIM
- Stepped-up authentication
- Passwordless authentication
- Smart Card Authentication
- FIDO authentication
- OTP authentication
- Email authentication including message signing
- Device Flow authentication
- Consumer digital identity
Gluu Flex
Gluu Flex is good for business.

No Lock-In
One of the unique features of Gluu Flex is the ability to move to the Janssen Project open source distribution. If your Gluu subscription expires, the commercial Admin-UI will lock. But don’t worry–nothing goes down because everything in the critical path for authentication is open source!
This means that you can start with Gluu Flex, but if you decide to move to 100% open source “in-house” later, it’s no problem.

Cost effective
The cost of a Gluu Subscription is based on peak Monthly Active Users. That means you don’t have to pay for users who never log in!
Gluu enables your business to use existing database infrastructure–no requirement to deploy a fragile, single-purpose LDAP topology. This can significantly improve your total cost of ownership (and uptime!).
Improved time to market with the low code Agama Lab development platform helps your business better serve customers and deliver value through improved user experience and security.
Harness the innovation of open source for your enterprise!

Multi-Factor Authentication
With Gluu Flex, end-users can self-service manage their MFA credentials. Flex has out-of-the-box support for SMS, one-time password, Super Gluu mobile push authentication, and of course FIDO authentication and passkeys.

Social Login
Built-in support for Google, Facebook, Apple, Microsoft Azure AD, or any consumer identity provider that supports OpenID Connect. This is accomplished using Agama-based identity orchestration. After authentication, end-users can link and unlink social login identity providers by logging into the Flex Casa component.

Use JWT access tokens to secure APIs
It’s common to use the scope claim of a JWT access token to control the extent of access a client has to call features defined in your API. Using Flex as the OAuth Authorization Server also enables your API to delegate client authentication, which improves security because Flex has support for many client authentication features.