CoreOS has released one: https://github.com/coreos/go-oidc

We're currently using it in our own OAuth/OIDC identity provider.

that's not a real problem. only a few frameworks having a good one. In java i handwritten mine.

And golang has the same good crypto tools as Java.

> https://godoc.org/golang.org/x/crypto/pbkdf2

> https://golang.org/pkg/crypto/subtle/

And finally a Token Library: https://github.com/dgrijalva/jwt-go or https://github.com/dvsekhvalnov/jose2go

And that's all you need to write a Authentication / Authorization Library in 100-200 lines of code. And it will mostly be more secure than most of the things you see in the open world.

I have always been scared of implementing my own and put it in production, but you motivate me to do so ;)