Yeah, sounds like a security feature… I was able to configure Traefik to connect with TLS, verifying the peer certificate.
g5pw
joined 1 year ago
Yes, it should cover all the use cases you mention!
I use oauth2-proxy as ForwardAuth on Traefik so I can protect apps that do not support OAuth/OIDC login/
I use kanidm with oauth2-proxy. No issues so far, it was pretty easy to set up.
Note that the connection to kanidm needs to be TLS even if you have a reverse proxy!
EDIT: currently using 80MB RAM for two users and three Service Providers.
Hey there! I’m also a fellow Reddit expat, deleted my logins in the day the API limits went into effect.
I’m coming from a long pause in activity, I’m planning to try some SOTA once the weather gets a bit warmer.
I’m the proud owner of a IC-706mk2G with a couple of blown caps (I really hope the FETs are okay) and a bunch of handhelds. 73 de IV3BSI
I also moved away my domains and the ones of the hackerspace I manage, mainly to:
- infomaniak (Switzerland): a bit too pushy with extra services, but not bad
- openprovider (NL): more geared towards bulk users, have to prepay (min 20€), but okay so far
- aruba: meh, but free mailboxes are nice
I also use Migadu, they have been great so far!
desec.io for DNS, also great and supported by Traefik for DNS-01 ACME challenge.
I think you can create a group for friends and a group for family. If you want more separation I think Authentik handles multi-tenancy as well
Mi pare assurdo che le aziende che producono qualcosa non siano responsabili almeno in parte dello smaltimento dell’oggetto in primis, e dell’involucro/imballaggio. La domanda più interessante a questo punto è, se lo so io, è lo sai te, possibile che non sia mai venuto in mente a quelli che hanno la possibilità di fare qualche cambiamento?
Saving this for all my future pro-systemd flames, thank you!
I’m using sops with my GPG key currently.
Qualcuno sa se c’è un whitepaper tecnico? La piattaforma è open source?
I didn’t have any issues, do you see anything in the logs?