▲ 276 r/NixOS
u/-jsteinke — 13 days ago
u/-jsteinke
▲ 3 r/selfhosted
I like Authentik and it's what I use but it seems like it doesn't support per application OIDC via a global application agnostic issuer href using webfinger which seems to basically mean you can only have one OIDC application per hostname unless you do some logic on your webserver to respond correctly per application on the global href.
This issue seems to indicate Authentik doesn't support a global href: https://github.com/goauthentik/authentik/issues/7251
Tell me if I'm wrong. I want to be wrong.
In any case I'm curious, for those of you that use OIDC webfinger discovery for multiple applications, How has your experience been doing so with self-hosted SSO?
Have you enjoyed using OIDC webfinger discovery with your preferred SSO application?
My only prior experience setting up SSO was using Codeberg as a managed OIDC provider which did support setting up multiple applications on a global application agnostic issuer hrf.
u/-jsteinke — 13 days ago
▲ 13 r/plural
I learned of plurality by reading some blog posts by Xe Iaso who is an accomplished programmer and CEO of a technology company called Techaro.
I'd respected this person prior to learning of their plurality so it did a lot to humanize their experience having never heard of plurality.
What are some of the long form personal anecdotes from individuals you respect or even look up to that speak to you and do a good job communicating the experience?
u/-jsteinke — 13 days ago