Thanks! I managed to get user/pass on the same page and it works great with the compatibility mode
johntash
joined 2 years ago
That's essentially what I am doing. Everything is on the LAN by default. I have two instances of Traefik. One that runs only on internal VPN ips, and another on remote servers using public ips. So I can choose which services are accessible over lan/vpn or public (routed through a vpn to lan).
That doesn't solve the authentication problem if I want to expose something to the internet though, or even sso inside the lan.
You can change the logon flow to make the username and password on the same page There is a comparability button as well on the login flow that allows bitwarden and other to auto fill correctly.
Thanks for the tips, I found the compatibility button and will try it out. I'm not sure I see how to change the username/password to be on the same page though. Do you have to create a whole new login flow?
Do you have a link for padlock by any chance?
I'm not sure if this is it, but I found a password manager named padloc: https://github.com/padloc/padloc
Did you move to Keycloak, or something else?
Thanks for confirming, I just saw that as well.
I'm going to try some of the other solutions in this thread, but I might still come back to authelia and just ignore my requirement for having social login. I like the idea of sending someone a link and saying "Hey just log in with your google account" instead of having to create an actual user for them, but maybe I can use something else specifically for those cases.
cloudflare access + cloudflare tunnels is a cool solution, and was easy to set up in the past, but I'd rather stick to something completely self-hosted. I'd probably use it for something completely public, but not things that route into my homelab.
Once I'm authenticated, it's actually pretty okay. It goes through the redirections fast enough that I wouldn't notice usually. But the login pages would take several seconds to load for me, and navigating around the admin ui also seemed to take several seconds for each page change. So not extremely slow, but slow enough to notice and get annoyed by it. Admittedly I probably could increase the session duration or something to help with that too.
Canaille looks pretty interesting and simple too, thanks for the link!
Thanks, I'll take a look! It might be helpful even if I use a different idp
Do you have any issues with Authentik being slow? It might be my environment since I haven't done much troubleshooting yet.
view more: next ›
Thanks for the recommendation, I'll take a look at some of his videos. I managed to get the un/pw on one page, but haven't done much with webauthn/passwordless stuff yet so that might be useful too.