Authentik - Making authentication simple.
-
authentik is an open-source Identity Provider focused on flexibility and versatility. You can use authentik in an existing environment to add support for new protocols, implement sign-up/recovery/etc. in your application so you don't have to deal with it, and many other things.
https://goauthentik.io/
https://github.com/goauthentik/authentik
https://goauthentik.io/docs/installation/docker-compose/@nj Yes, very nice!
-
authentik is an open-source Identity Provider focused on flexibility and versatility. You can use authentik in an existing environment to add support for new protocols, implement sign-up/recovery/etc. in your application so you don't have to deal with it, and many other things.
https://goauthentik.io/
https://github.com/goauthentik/authentik
https://goauthentik.io/docs/installation/docker-compose/ -
Was just looking into the exact same thing.
from here.We might do this anyway, but it would also be good to have an enthusiastic audience from @girish and @nebulon for some of these more Enterprisey things please.
We can blow the trumpet all day long as techies, but it's things like this that anyone with more than a dozen or so users really needs, and would be happy to pay more for too!
-
SMS 2FS setup seems pretty simple too:
https://goauthentik.io/docs/flow/stages/authenticator_sms/
It's kind of a PITA that Cloudron doesn't have SMS password resets and 2FA, would save me a lot of work in trying to setup new users that don't have email access yet.
Web Design https://www.evergreen.je
Development https://brandlight.org
Life https://marcusquinn.com -
S Sam_uk referenced this topic on
-
SMS 2FS setup seems pretty simple too:
https://goauthentik.io/docs/flow/stages/authenticator_sms/
It's kind of a PITA that Cloudron doesn't have SMS password resets and 2FA, would save me a lot of work in trying to setup new users that don't have email access yet.
I'm pretty interested in getting this packaged soonish.
Could someone provide an estimate of how many hours work it would be, I can then see if I can find a budget for it?
Is there anyone else who might you be able to contribute to the costs? @marcusquinn @atridad
-
I'm pretty interested in getting this packaged soonish.
Could someone provide an estimate of how many hours work it would be, I can then see if I can find a budget for it?
Is there anyone else who might you be able to contribute to the costs? @marcusquinn @atridad
-
@Sam_uk We'll try and work on this soon, but could sponsor if someone else wanted to?
-
@Sam_uk I still think Keycloak is more stable. If I had to choose between Authentik and Keycloak I'd pick Keycloak any day. Also, I have successfully packaged Keycloak. https://github.com/njsubedi/cloudron-keycloak
Founder / Coder • My Apps
-
@Sam_uk I still think Keycloak is more stable. If I had to choose between Authentik and Keycloak I'd pick Keycloak any day. Also, I have successfully packaged Keycloak. https://github.com/njsubedi/cloudron-keycloak
@nj could you please, elaborate on your thoughts? Is it something coming from your experience?
-
@Sam_uk I still think Keycloak is more stable. If I had to choose between Authentik and Keycloak I'd pick Keycloak any day. Also, I have successfully packaged Keycloak. https://github.com/njsubedi/cloudron-keycloak
@nj said in Authentik - Making authentication simple.:
If I had to choose between Authentik and Keycloak I'd pick Keycloak any day
I'd love to know more about why this opinion.
Keycloak sure looks an impressive beast.
But it seems to me almost "too impressive".
My brief review suggests to me that it is an Enterprise solution.
And it's only suitable for apps supporting OpenConnectID.
Great if they do, but that's a limited selection in reality.
Which is not what is needed "any day".I'm not knocking Keycloak. Maybe I will come to love it.
For now I just want to put an authentication front-end in front of some simple utility apps which have no auth.Seems that's not what Keycloak is about.
-
@marcusquinn Great stuff, do you have a sense of how many hours of work we're looking at? Is it half a day or five days?
@Sam_uk / @marcusquinn : did the packaging for authentik get anywhere ?
-
authentik is an open-source Identity Provider focused on flexibility and versatility. You can use authentik in an existing environment to add support for new protocols, implement sign-up/recovery/etc. in your application so you don't have to deal with it, and many other things.
https://goauthentik.io/
https://github.com/goauthentik/authentik
https://goauthentik.io/docs/installation/docker-compose/@nj slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The documentation is totally clear but lacking in 'how to'.
The only I found (https://xpufx.com/posts/protecting-your-first-app-with-authentik/) was helpful as regards authentik but basically said it's all down to network config and provided little guidance as to what network config. -
@nj slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The documentation is totally clear but lacking in 'how to'.
The only I found (https://xpufx.com/posts/protecting-your-first-app-with-authentik/) was helpful as regards authentik but basically said it's all down to network config and provided little guidance as to what network config.@timconsidine said in Authentik - Making authentication simple.:
slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The authentik documentation has example configurations for quite some applications: https://goauthentik.io/integrations/
I have only just started taking a dive into Authentik but for portability reasons I decided to deploy it on a machine independent from my Cloudron.
-
Has there been any further development with this? I am considering deploying Authentik on a non-Cloudron server but would wait if it is likely to be on Cloudron in the near future.
-
Has there been any further development with this? I am considering deploying Authentik on a non-Cloudron server but would wait if it is likely to be on Cloudron in the near future.
