readme.makary.online<p>So, I think I'm almost ready for some open beta of the registration on my project. Yay me?
Summary is as follows:
1. I want to run a federated discussion forum using <a href="https://readme.makary.online/tag:Mbin" class="hashtag" rel="nofollow noopener" target="_blank"><span>#</span><span class="p-category">Mbin</span></a>
2. Because I will want to put another services as a part of the same project/domain, including but not limited to <a href="https://readme.makary.online/tag:mobilizon" class="hashtag" rel="nofollow noopener" target="_blank"><span>#</span><span class="p-category">mobilizon</span></a>, and maybe even multi-user <a href="https://readme.makary.online/tag:writefreely" class="hashtag" rel="nofollow noopener" target="_blank"><span>#</span><span class="p-category">writefreely</span></a>, I need something to handle authentication and user access to all of them
3. Initially I wanted to go with <a href="https://readme.makary.online/tag:Zitadel" class="hashtag" rel="nofollow noopener" target="_blank"><span>#</span><span class="p-category">Zitadel</span></a>, but I realised that it has baked in First and Last name required fields, and to be honest, I am absolutely not interested in this data, and even explicitly <em>don't want to</em> have to keep and process it; so I don't really want to make my users have to fill this out
4. I stumbled upon <a href="https://readme.makary.online/tag:authentik" class="hashtag" rel="nofollow noopener" target="_blank"><span>#</span><span class="p-category">authentik</span></a>, and while I appreciate possibility of setting up complex auth flows and such without the need to touch raw code, it seemed a little bit daunting.
5. I found a set of really awesome tutorials by <a href="https://www.youtube.com/playlist?list=PLH73rprBo7vSkDq-hAuXOoXx2es-1ExOP" rel="nofollow noopener" target="_blank">Cooptonian on YouTube</a>, and I managed to solve not only setup, connecting the client apps, emails and password recovery, but also I got a way better grip on the inner workings of Authentik, and feel confident that if I need to do some minor tweaks to it, I will be able to.
6. I hope I will deploy the pemultimate flow today, that is the signup/invitation flow, and I will be ready to invite selected amount of people for some tests of the project, so hang on tight!</p>
<p>If you got that far, thank you for reading, I will write more on that (and unveil a related thing!) in the upcoming days, so come back!
You can also give this blog a follow at <a href="https://readme.makary.online" rel="nofollow noopener" target="_blank">https://readme.makary.online</a>, on your RSS reader at <a href="https://readme.makary.online/feed" rel="nofollow noopener" target="_blank">https://readme.makary.online/feed</a>, or on your favourite Mastodon/Fediverse account at <a href="https://readme.makary.online/@/makary@readme.makary.online" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>makary@readme.makary.online</span></a>
Be warned tho, that it was created with more technical posts in mind!</p>
lingo.lol is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for linguists, philologists, and other lovers of languages.
Administered by:
Server stats:
54active users
lingo.lol: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.3
#authentik
0 posts · 0 participants · 0 posts today
gyptazy<p>Proxmox in Enterprises: I'm often asked, 'Can we use our Active Directory, LDAP, or OIDC with Proxmox?' Yes, you can!</p><p>Let's have quick dive into installing and configuring Authentik and configure Proxmox VE to use OIDC as an additional authentication realm.</p><p><a href="https://mastodon.gyptazy.com/tags/Proxmox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Proxmox</span></a> <a href="https://mastodon.gyptazy.com/tags/ProxmoxVE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProxmoxVE</span></a> <a href="https://mastodon.gyptazy.com/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> <a href="https://mastodon.gyptazy.com/tags/Authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Authentik</span></a> <a href="https://mastodon.gyptazy.com/tags/OpenID" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenID</span></a> <a href="https://mastodon.gyptazy.com/tags/OpenIDConnect" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenIDConnect</span></a> <a href="https://mastodon.gyptazy.com/tags/OIDC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OIDC</span></a> <a href="https://mastodon.gyptazy.com/tags/EntraID" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EntraID</span></a> <a href="https://mastodon.gyptazy.com/tags/enterprise" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>enterprise</span></a> <a href="https://mastodon.gyptazy.com/tags/homelab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>homelab</span></a></p><p><a href="https://gyptazy.com/proxmox-authentik-oidc-install-configure-and-connect-authentik-to-proxmox-ve/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gyptazy.com/proxmox-authentik-</span><span class="invisible">oidc-install-configure-and-connect-authentik-to-proxmox-ve/</span></a></p>
Chris Hayes<p>omg, what started as "let's bring Authentik up to the latest version",<br>turned into "Authentik requires Postgres to be upgraded",<br>turned into "Postgres needs me to dump and reimport the data to upgrade"<br>turned into "sh*t, my dump failed and I already deleted the docker volume"<br>turned into "my data is gone, and now I'm setting up a fresh Authentik server" <a href="https://floss.social/tags/authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>authentik</span></a> <a href="https://floss.social/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a></p>
Paco Hope #resist<p>So I was messing with <a href="https://infosec.exchange/tags/drupal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>drupal</span></a> in the <a href="https://infosec.exchange/tags/homelab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>homelab</span></a> and I wanted to turn on <a href="https://infosec.exchange/tags/SSO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSO</span></a> with <a href="https://infosec.exchange/tags/authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>authentik</span></a>.</p><p>Somehow I didn’t find the official drupal OIDC module, I found this other one. I installed it, got it configured, and the first time I tried to login, it said “whoops, you have to purchase this module to use it.” Fine. I like supporting software, what does it cost?</p><p>$250/year!? To LOG IN? F that. </p><p>One of its key selling points is how easy it is to configure. If I was configuring it often, maybe I could see that. But OIDC and SAML are the kinds of things you set up once per lifetime. Make it as hard as you want (many apps do!) I only have to get through it once.</p><p>I mean $10? Even as much as maybe $50 I might have paid once. But I refuse to pay annually for the ability to login. <br><a href="https://infosec.exchange/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosted</span></a></p>
viq<p>Running <a href="https://social.hackerspace.pl/tags/Authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Authentik</span></a> with `latest` tag was convenient for <a href="https://social.hackerspace.pl/tags/homelab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>homelab</span></a>, but they're moving away from making it possible (edit: from having :latest tag available, nothing else changes). What are the alternatives? Is there maybe something like "<a href="https://social.hackerspace.pl/tags/dependabot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dependabot</span></a> but for <a href="https://social.hackerspace.pl/tags/kubernetes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>kubernetes</span></a> images"? (I'm currently running on <a href="https://social.hackerspace.pl/tags/podman" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>podman</span></a> on nixos, but I'm considering finally playing with <a href="https://social.hackerspace.pl/tags/k8s" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>k8s</span></a>, and regardless, this should be able to make it so I have proper image on nixos as well, I think)</p>
Paco Hope #resist<p>For about 30 years I have <a href="https://infosec.exchange/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosted</span></a> my <a href="https://infosec.exchange/tags/email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>email</span></a>. Just family and friends on there. About 7-8 people. About 6 months ago I converted the <a href="https://infosec.exchange/tags/homelab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>homelab</span></a> to using <a href="https://infosec.exchange/tags/authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>authentik</span></a> for single sign on. For the first time in those 30 years, my users can change their own passwords and recover them if they lose them. 🤷♂️</p><p>Interestingly, the “I forgot my password” workflow is not built and turned on by default in authentik. It’s easy to add and the steps are clear, but you have to turn that on.</p>
La Contre-Voie<p>À La Contre-Voie, ces deux dernières années, nous avons testé plus d’une dizaine d’outils d’authentification centralisée (<a href="https://toot.aquilenet.fr/tags/SSO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSO</span></a>)… On vous livre les conclusions de nos recherches !<br><a href="https://lacontrevoie.fr/blog/2024/comparatif-de-onze-solutions-de-sso-libres/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">lacontrevoie.fr/blog/2024/comp</span><span class="invisible">aratif-de-onze-solutions-de-sso-libres/</span></a></p><p>La semaine prochaine, nous vous présenterons notre troisième et dernier article sur la partie technique de notre association, avec un coup de projecteur sur nos « fermes à services » :)</p><p><a href="https://toot.aquilenet.fr/tags/authelia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>authelia</span></a> <a href="https://toot.aquilenet.fr/tags/authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>authentik</span></a> <a href="https://toot.aquilenet.fr/tags/keycloak" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>keycloak</span></a> <a href="https://toot.aquilenet.fr/tags/ory" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ory</span></a> <a href="https://toot.aquilenet.fr/tags/canaille" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>canaille</span></a> <a href="https://toot.aquilenet.fr/tags/zitadel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>zitadel</span></a></p>
Marcel<p>Ihr wollt <a href="https://fedifriends.social/tags/Mastodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mastodon</span></a> auch mit (zusätzlichem) <a href="https://fedifriends.social/tags/SSO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSO</span></a> betreiben? Eure bisherigen Nutzer sollen dabei erhalten bleiben?</p><p>Ich hab da was zusammen gesucht aus der Dokumentation und verschiedenen Issues auf Github. Hier eine funktionierende Konfiguration. Ich verwende sie selbst in Verbindung mit <a href="https://fedifriends.social/tags/authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>authentik</span></a> </p><p><a href="https://crypt.storagemte.eu/code/#/2/code/view/BSTU+Rg5Wfxl-nRt0ATUrHr86IeqYwhD5kOyMmJfYFQ/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">crypt.storagemte.eu/code/#/2/c</span><span class="invisible">ode/view/BSTU+Rg5Wfxl-nRt0ATUrHr86IeqYwhD5kOyMmJfYFQ/</span></a></p><p>Bitte beachtet, das ihr bei Mastodon dieselbe E-Mailadresse wie in eurem Identitätsprovider haben müsst!</p><p><a href="https://fedifriends.social/tags/foss" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>foss</span></a> <a href="https://fedifriends.social/tags/MastoAdmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MastoAdmin</span></a> <a href="https://fedifriends.social/tags/oidc" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>oidc</span></a></p>
Dave Lane :flag_tino: 🇳🇿<p><span class="h-card" translate="no"><a href="https://hackers.town/@yojimbo" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>yojimbo</span></a></span> <span class="h-card" translate="no"><a href="https://cloudisland.nz/@aurynn" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>aurynn</span></a></span> Following quite a lot of experimentation and frustration, I've gone with <a href="https://mastodon.nzoss.nz/tags/Authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Authentik</span></a> - see <a href="https://tech.oeru.org/installing-authentik-authentication-and-single-sign" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">tech.oeru.org/installing-authe</span><span class="invisible">ntik-authentication-and-single-sign</span></a> for how I'm doing it.</p>
Chris Hayes<p>I'm self-hosting the design tool, <span class="h-card" translate="no"><a href="https://fosstodon.org/@penpot" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>penpot</span></a></span>, I use for personal projects. For login, I'm running my own <a href="https://fosstodon.org/tags/OpenID" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenID</span></a> auth server with <a href="https://fosstodon.org/tags/Authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Authentik</span></a>.</p><p>Boy does this make me happy.</p>
Brian McGonagill<p>Continuing our Journey to Build an MSP using only <a href="https://fosstodon.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> tools. We dive into @netbird and <a href="https://fosstodon.org/tags/Authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Authentik</span></a> as a foundational piece of our infrastructure. It's <a href="https://fosstodon.org/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosted</span></a>, runs on <a href="https://fosstodon.org/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> and <a href="https://fosstodon.org/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a>, of course! <a href="https://youtu.be/Vi2UqOFqDGU" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/Vi2UqOFqDGU</span><span class="invisible"></span></a></p>
Guy<p><span class="h-card"><a href="https://mastodon.nzoss.nz/@lightweight" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>lightweight</span></a></span> Looks like <a href="https://mastodon.nz/tags/Authentik" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Authentik</span></a> may be more what I'm looking for, as <a href="https://mastodon.nz/tags/Authelia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Authelia</span></a> seems to be more of a 'shielding proxy' in front.</p><p><a href="https://goauthentik.io/" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="">goauthentik.io/</span><span class="invisible"></span></a><br><a href="https://www.reddit.com/r/selfhosted/comments/q721e9/comment/hggnqsw/?context=3" rel="nofollow noopener" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">reddit.com/r/selfhosted/commen</span><span class="invisible">ts/q721e9/comment/hggnqsw/?context=3</span></a></p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload