Authentik - Making authentication simple.
nj last edited by
authentik is an open-source Identity Provider focused on flexibility and versatility. You can use authentik in an existing environment to add support for new protocols, implement sign-up/recovery/etc. in your application so you don't have to deal with it, and many other things.
andreasdueren last edited by
@nj Yes, very nice!
Sam_uk last edited by
Was just looking into the exact same thing. from here.
We might do this anyway, but it would also be good to have an enthusiastic audience from @girish and @nebulon for some of these more Enterprisey things please.
We can blow the trumpet all day long as techies, but it's things like this that anyone with more than a dozen or so users really needs, and would be happy to pay more for too!
SMS 2FS setup seems pretty simple too:
It's kind of a PITA that Cloudron doesn't have SMS password resets and 2FA, would save me a lot of work in trying to setup new users that don't have email access yet.
Sam_uk last edited by Sam_uk
I'm pretty interested in getting this packaged soonish.
Could someone provide an estimate of how many hours work it would be, I can then see if I can find a budget for it?
Is there anyone else who might you be able to contribute to the costs? @marcusquinn @atridad
@Sam_uk We'll try and work on this soon, but could sponsor if someone else wanted to?
Sam_uk last edited by
@marcusquinn Great stuff, do you have a sense of how many hours of work we're looking at? Is it half a day or five days?
nj last edited by nj
@Sam_uk I still think Keycloak is more stable. If I had to choose between Authentik and Keycloak I'd pick Keycloak any day. Also, I have successfully packaged Keycloak. https://github.com/njsubedi/cloudron-keycloak
potemkin_ai last edited by
@nj could you please, elaborate on your thoughts? Is it something coming from your experience?
@nj said in Authentik - Making authentication simple.:
If I had to choose between Authentik and Keycloak I'd pick Keycloak any day
I'd love to know more about why this opinion.
Keycloak sure looks an impressive beast.
But it seems to me almost "too impressive".
My brief review suggests to me that it is an Enterprise solution.
And it's only suitable for apps supporting OpenConnectID.
Great if they do, but that's a limited selection in reality.
Which is not what is needed "any day".
I'm not knocking Keycloak. Maybe I will come to love it.
For now I just want to put an authentication front-end in front of some simple utility apps which have no auth.
Seems that's not what Keycloak is about.
@Sam_uk / @marcusquinn : did the packaging for authentik get anywhere ?
@nj slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The documentation is totally clear but lacking in 'how to'.
The only I found (https://xpufx.com/posts/protecting-your-first-app-with-authentik/) was helpful as regards authentik but basically said it's all down to network config and provided little guidance as to what network config.
@timconsidine said in Authentik - Making authentication simple.:
slightly off-topic but any suggestions of a tutorial for implementing Authentik ?
The authentik documentation has example configurations for quite some applications: https://goauthentik.io/integrations/
I have only just started taking a dive into Authentik but for portability reasons I decided to deploy it on a machine independent from my Cloudron.