Dentropy Cloud Authentication
There are multiple goals for the authentication portion of Dentropy Cloud. The first goal of the authentication is to have a single log on for as many apps as reasonable. The second goal is to have SSO(single sign on) proxies in front of apps requireing authentication allowing even unsecured apps to be secured and publically available on the internet. The third goal is to have permissions, some users only need access to one or two apps while others need access to most apps and the server only needs access to all apps.
- Options incoude
- Authelia
- Dex
- Keycloack
- goauthentik
Network Routing with Auth
Traefik + Keycloak
- GitHub - asatrya/keycloak-traefik-tutorial: Tutorial how to use Keycloak for authentication and Traefik for API gateway in Microservices architecture
- Requires a gateway container for every service
- Auth is complicated to setup, many steps, maybe can be simpler
- Does not use docker labels
- For traefik v1 does not include instructions to change hostname
- Keycloak - Guide - Keycloak on Docker
- Official Keycloak documentation, does not include traefik
- HTTPS problems running on remote host
- KeyCloak - Funky Penguin's Geek Cookbook
- Start - Funky Penguin's Geek Cookbook
- Too Vauge to actually use
- docker-media-stack
- Have no idea how to run the same thing
I am going to have to hire a tutor on that tutoring website. What am I going to ask them?
TODO:
Create my own git repo with branches of different things I tried. Write a blog post of some sort explaining what I know about keycloak, traefik and docker.
Building a homelab, want to configure keycloak as a middleware proxy using keycloak for authentication.
I am looking to learn more about traefik and keycloak with respects to docker. I want to run a series of applications such on my homelab behind a traefik + keycloak proxy.