The weekly post. As usual, not my blog, just a good community share. Authors are on Mastodon at @selfhst@fosstodon.org.
Anyone use authentik? Seems useful, most of my homelab services are unsecured ATM (just local only/vpn)
I use authentik and I love how easy it is to create users, give them access to my services and even manage an LDAP outpost for the less-advanced services (Jellyfin, Calibre-Web). I heard that Keycloak is a better alternative to authentik, but I never used it, it looks very similar to it though.
Id like to centralize auth but I haven’t dug into it yet. My concern is, can it be distributed? I have services spread across my homelab and multiple vpses. I don’t want to lose auth if any of those is down.
It seems that Keycloak can sync multiple instances, but I don’t know how good of an idea that is. I found something in it’s documentation: https://www.keycloak.org/high-availability/introduction
Saw that ChrisLempa made a video about it recently, looks very interesting. Defo gonna give it a try some time soon 🌻
Also, that CLI trick is crazy! Never knew that and I’m a fairly proficient shell user.
Gonna try Janitorr!
The thought of colocating my homelab is intriguing… But also sounds like way too much effort and money