Authentik - Making authentication simple.
-
@marcusquinn Great stuff, do you have a sense of how many hours of work we're looking at? Is it half a day or five days?
@Sam_uk / @marcusquinn : did the packaging for authentik get anywhere ?
-
authentik is an open-source Identity Provider focused on flexibility and versatility. You can use authentik in an existing environment to add support for new protocols, implement sign-up/recovery/etc. in your application so you don't have to deal with it, and many other things.
https://goauthentik.io/
https://github.com/goauthentik/authentik
https://goauthentik.io/docs/installation/docker-compose/@nj slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The documentation is totally clear but lacking in 'how to'.
The only I found (https://xpufx.com/posts/protecting-your-first-app-with-authentik/) was helpful as regards authentik but basically said it's all down to network config and provided little guidance as to what network config.Indie app dev, scratching my itches, lover of Cloudron PaaS, communityapps.appx.uk
-
@nj slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The documentation is totally clear but lacking in 'how to'.
The only I found (https://xpufx.com/posts/protecting-your-first-app-with-authentik/) was helpful as regards authentik but basically said it's all down to network config and provided little guidance as to what network config.@timconsidine said in Authentik - Making authentication simple.:
slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The authentik documentation has example configurations for quite some applications: https://goauthentik.io/integrations/
I have only just started taking a dive into Authentik but for portability reasons I decided to deploy it on a machine independent from my Cloudron.
-
Has there been any further development with this? I am considering deploying Authentik on a non-Cloudron server but would wait if it is likely to be on Cloudron in the near future.
-
Has there been any further development with this? I am considering deploying Authentik on a non-Cloudron server but would wait if it is likely to be on Cloudron in the near future.
-
I've put up a Git repo to make a Cloudron app for Authentik. I was able to fully set it up, but let me know if you guys have any issues
https://github.com/stalecontext/authentik-cloudron-appI also had to fork the Immich app to allow custom OAuth configuration incase you guys want to use Authentik for that:
https://github.com/stalecontext/immich-cloudron-custom-oauth -
I've put up a Git repo to make a Cloudron app for Authentik. I was able to fully set it up, but let me know if you guys have any issues
https://github.com/stalecontext/authentik-cloudron-appI also had to fork the Immich app to allow custom OAuth configuration incase you guys want to use Authentik for that:
https://github.com/stalecontext/immich-cloudron-custom-oauth@stalecontext said in Authentik - Making authentication simple.:
I've put up a Git repo to make a Cloudron app for Authentik. I was able to fully set it up, but let me know if you guys have any issues
https://github.com/stalecontext/authentik-cloudron-appI also had to fork the Immich app to allow custom OAuth configuration incase you guys want to use Authentik for that:
https://github.com/stalecontext/immich-cloudron-custom-oauthI'm getting 404s on both those links
-
Hello @jdaviescoates
The whole profile is gone https://github.com/stalecontext/ maybe he has renamed his github account?
-
Have to email GitHub Support to get my account fixed. I think one of my repos needed cleaning up or something. I've reposted it on my private git incase you wanna check it out there @jdaviescoates @james
-
Authentik has been working magnificently in my case by the way. It's really nice and documentation for it is extremely thorough.
-
@james What does the team think about making Authentik an official Cloudron-supported app? @stalecontext has started the process. I think Authentik would serve a niche between Cloudron OIDC (simple) and Keycloak (Enterprise/complex).
If someone wanted to run "auth-as-a-service", Authentik would be perfect for that use case. Having it official at Cloudron would make it less risky to implement.
-
@james What does the team think about making Authentik an official Cloudron-supported app? @stalecontext has started the process. I think Authentik would serve a niche between Cloudron OIDC (simple) and Keycloak (Enterprise/complex).
If someone wanted to run "auth-as-a-service", Authentik would be perfect for that use case. Having it official at Cloudron would make it less risky to implement.
-
@lanhild Didn't see the comment you were referring to. Can you explain why outposts would not work if Authentik were packaged as a Cloudron app? Why would it be any different from any other Docker app or Authentik hosted on an independent server running Docker?
-
@lanhild Didn't see the comment you were referring to. Can you explain why outposts would not work if Authentik were packaged as a Cloudron app? Why would it be any different from any other Docker app or Authentik hosted on an independent server running Docker?
-
@lanhild Got it. Is a dockerized app creating its own connected docker containers a typical pattern? Lastly, is Authentik without the ability to use outposts still useful, or is it crippled without them?
- For applications with networking related features, not uncommon
- Depends on the use case, as soon as you need LDAP or other protocols, an outposts necessary. Other features like SAML and OIDC will work without additional configuration.
You can see authentik's documentation about this, it's well detailed.
-
@crazybrad Core features such as outposts wouldn't work by packaging authentik as a Cloudron application.
As mentioned earlier in this topic, authentik is the kind of application I'd suggest having installed on a separate server.
@Lanhild Interesting. I'll investigate more and see if I can turn the repo into a proxy app
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login