Authentik - Making authentication simple.
-
Was just looking into the exact same thing.
from here.We might do this anyway, but it would also be good to have an enthusiastic audience from @girish and @nebulon for some of these more Enterprisey things please.
We can blow the trumpet all day long as techies, but it's things like this that anyone with more than a dozen or so users really needs, and would be happy to pay more for too!
-
SMS 2FS setup seems pretty simple too:
https://goauthentik.io/docs/flow/stages/authenticator_sms/
It's kind of a PITA that Cloudron doesn't have SMS password resets and 2FA, would save me a lot of work in trying to setup new users that don't have email access yet.
Web Design & Development: https://www.evergreen.je
Technology & Apps: https://www.marcusquinn.com -
S Sam_uk referenced this topic on
-
SMS 2FS setup seems pretty simple too:
https://goauthentik.io/docs/flow/stages/authenticator_sms/
It's kind of a PITA that Cloudron doesn't have SMS password resets and 2FA, would save me a lot of work in trying to setup new users that don't have email access yet.
I'm pretty interested in getting this packaged soonish.
Could someone provide an estimate of how many hours work it would be, I can then see if I can find a budget for it?
Is there anyone else who might you be able to contribute to the costs? @marcusquinn @atridad
-
I'm pretty interested in getting this packaged soonish.
Could someone provide an estimate of how many hours work it would be, I can then see if I can find a budget for it?
Is there anyone else who might you be able to contribute to the costs? @marcusquinn @atridad
-
@Sam_uk We'll try and work on this soon, but could sponsor if someone else wanted to?
-
@Sam_uk I still think Keycloak is more stable. If I had to choose between Authentik and Keycloak I'd pick Keycloak any day. Also, I have successfully packaged Keycloak. https://github.com/njsubedi/cloudron-keycloak
Founder / Coder • My Apps
-
@Sam_uk I still think Keycloak is more stable. If I had to choose between Authentik and Keycloak I'd pick Keycloak any day. Also, I have successfully packaged Keycloak. https://github.com/njsubedi/cloudron-keycloak
@nj could you please, elaborate on your thoughts? Is it something coming from your experience?
-
@Sam_uk I still think Keycloak is more stable. If I had to choose between Authentik and Keycloak I'd pick Keycloak any day. Also, I have successfully packaged Keycloak. https://github.com/njsubedi/cloudron-keycloak
@nj said in Authentik - Making authentication simple.:
If I had to choose between Authentik and Keycloak I'd pick Keycloak any day
I'd love to know more about why this opinion.
Keycloak sure looks an impressive beast.
But it seems to me almost "too impressive".
My brief review suggests to me that it is an Enterprise solution.
And it's only suitable for apps supporting OpenConnectID.
Great if they do, but that's a limited selection in reality.
Which is not what is needed "any day".I'm not knocking Keycloak. Maybe I will come to love it.
For now I just want to put an authentication front-end in front of some simple utility apps which have no auth.Seems that's not what Keycloak is about.
-
@marcusquinn Great stuff, do you have a sense of how many hours of work we're looking at? Is it half a day or five days?
@Sam_uk / @marcusquinn : did the packaging for authentik get anywhere ?
-
authentik is an open-source Identity Provider focused on flexibility and versatility. You can use authentik in an existing environment to add support for new protocols, implement sign-up/recovery/etc. in your application so you don't have to deal with it, and many other things.
https://goauthentik.io/
https://github.com/goauthentik/authentik
https://goauthentik.io/docs/installation/docker-compose/@nj slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The documentation is totally clear but lacking in 'how to'.
The only I found (https://xpufx.com/posts/protecting-your-first-app-with-authentik/) was helpful as regards authentik but basically said it's all down to network config and provided little guidance as to what network config.Indie app dev, scratching my itches, lover of Cloudron PaaS, communityapps.appx.uk
-
@nj slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The documentation is totally clear but lacking in 'how to'.
The only I found (https://xpufx.com/posts/protecting-your-first-app-with-authentik/) was helpful as regards authentik but basically said it's all down to network config and provided little guidance as to what network config.@timconsidine said in Authentik - Making authentication simple.:
slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The authentik documentation has example configurations for quite some applications: https://goauthentik.io/integrations/
I have only just started taking a dive into Authentik but for portability reasons I decided to deploy it on a machine independent from my Cloudron.
-
Has there been any further development with this? I am considering deploying Authentik on a non-Cloudron server but would wait if it is likely to be on Cloudron in the near future.
-
Has there been any further development with this? I am considering deploying Authentik on a non-Cloudron server but would wait if it is likely to be on Cloudron in the near future.
-
I've put up a Git repo to make a Cloudron app for Authentik. I was able to fully set it up, but let me know if you guys have any issues
https://github.com/stalecontext/authentik-cloudron-appI also had to fork the Immich app to allow custom OAuth configuration incase you guys want to use Authentik for that:
https://github.com/stalecontext/immich-cloudron-custom-oauth -
I've put up a Git repo to make a Cloudron app for Authentik. I was able to fully set it up, but let me know if you guys have any issues
https://github.com/stalecontext/authentik-cloudron-appI also had to fork the Immich app to allow custom OAuth configuration incase you guys want to use Authentik for that:
https://github.com/stalecontext/immich-cloudron-custom-oauth@stalecontext said in Authentik - Making authentication simple.:
I've put up a Git repo to make a Cloudron app for Authentik. I was able to fully set it up, but let me know if you guys have any issues
https://github.com/stalecontext/authentik-cloudron-appI also had to fork the Immich app to allow custom OAuth configuration incase you guys want to use Authentik for that:
https://github.com/stalecontext/immich-cloudron-custom-oauthI'm getting 404s on both those links
-
Hello @jdaviescoates
The whole profile is gone https://github.com/stalecontext/ maybe he has renamed his github account?
-
Have to email GitHub Support to get my account fixed. I think one of my repos needed cleaning up or something. I've reposted it on my private git incase you wanna check it out there @jdaviescoates @james
-
Authentik has been working magnificently in my case by the way. It's really nice and documentation for it is extremely thorough.
-
@james What does the team think about making Authentik an official Cloudron-supported app? @stalecontext has started the process. I think Authentik would serve a niche between Cloudron OIDC (simple) and Keycloak (Enterprise/complex).
If someone wanted to run "auth-as-a-service", Authentik would be perfect for that use case. Having it official at Cloudron would make it less risky to implement.
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login