Found a lightweight alternative to #authelia and #Authentik written in #Rust

https://github.com/nosduco/nforwardauth

#selfhosted #selfhosting #docker

Anyone have experience with #Authelia? (https://hub.docker.com/r/authelia/authelia)

Looking for a lightweight alternative to #Keycloak to handle auth for a self-hosted, containerized app. Keycloak itself is a 400MB+ image compressed...

@Bright5park #freshrss #paperlessngx #authelia come to mind

Current #homelab projects:

- migrating everything off of my first and primary server to others do I can start over with SSD storage to replace the current failing disks
- slowly migrating service into HashiCorp #nomad
- moving secrets into HashiCorp #vault and eventually using #1password as the backend
- need to setup sso, should I use # #keycloak, #authelia, or #authentik?

@itwasntme223 maybe #authelia #keycloak ?

Tried out #Authelia again. It's so close to what I need, but has a major requirement missing.

Besides users, I need to have functional accounts that I could use in scripts, API clients, external health checks, or other non-interactive clients.

Yes, I can bypass auth in certain ways, but auth bypass is not a great solution.

#SelfHosted

I'm reading through the #Authelia documentation, and I'm really impressed with the way they publish it.

On the left

broad overview of all options

On the right

table of contents for each page.

Color coded

• red: required
• green: not required
• blue: default value
• violet: type

top of each page

config snippet example with all options

Can we make this a standard? 🤩​

https://www.authelia.com/configuration/security/access-control/

#infosec #authentication #opensource

#authelia is #awesome in #homelab deployment as it is small and #automation friendly

The spec for this VM is 4 vCPU, 8 GB RAM, 50 GB Disk space (should be sufficient for a small or lab environment).

To make the 9800 Cloud WLC available from anywhere (i. e. the internet, I put it behind #authelia (https://www.authelia.com/) with a simple 1FA authentication (Normally I'm using 2FA with Yubikey for my other services, but 1FA should be okay for Test/Lab VM's).

@lightweight Looks like #Authentik may be more what I'm looking for, as #Authelia seems to be more of a 'shielding proxy' in front.

https://goauthentik.io/
https://www.reddit.com/r/selfhosted/comments/q721e9/comment/hggnqsw/?context=3

@therealchris well then.... I know where to come when I have inevitable issues when I finally get around to setting up #Authelia 😉

Been using #Wallabag for some time as a "read it later/keep a copy just in case" app (think pocket). Love it. But just found #Shiori a single binary written in GO and it seems so much more lightweight!

Only feature I truly miss is RSS feed integration and 2FA (which I have anyway as using #Authelia to get access to the web server in the first place).

Both are fantastic bits of #FOSS though.

I hope to release Firefly III 5.7.0 this week!

It comes with a bunch of new features (not too many, but useful ones 😅). It will also lose built-in LDAP support, sorry about that 🙁. Im deferring the LDAP/FreeIPA/AD puzzle to dedicated tools like #authelia and @keycloak.

Authelia – Ajoutez des fonctions d’authentification à votre reverse proxy https://korben.info/authelia-auth-reverse-proxy.html #moduleloginreverseproxy #doubleauthentification #authentification #Développement #Sécurité #authelia

Initial #prometheus + #authelia deployment done 🎉 had a bit of trouble to get basic auth and user auth with 2fa working at the same time, but it works for now
#sysadmin #monitoring