Comment

Comment on Simple guide to self hosted authentication?

Simplest would be Authelia and Swag.

Swag comes with prewritten config files and all you really need to do is uncomment a few lines and make sure it’s pointed to your service.

Linuxserver.io guides are good for this.

I ended up landing on Keycloak and I believe I set mine up using the ansible script, again it’s a matter of plugging in some details.

source

Sort:hotnew top

andy47@lemmy.world ⁨1⁩ ⁨year⁩ ago
Thanks for the pointer, I’ll check it out. I don’t think I’ve come across SWAG before, and a web search comes up with lots of references to sleeping bags (I’m in Australia - outbackreview.com.au/best-swags-australia/). Could you provide pointers and/or a homepage? Thanks in advance.

source
- andy47@lemmy.world ⁨1⁩ ⁨year⁩ ago
  Ok, I found this - linuxserver.io/…/2020-08-26-setting-up-authelia.
  
  Which, if I’m reading it correctly tells me that SWAG (Secure Web Application Gateway) is essentially a web server, reverse proxy with lets encrypt support. It doesn’t seem to do any authentication.
  
  Authelia is a component of an identity and authentication solution that provides single sign on and 2FA but, crucially, does not include a user directory, by default it uses a YAML file but can be connected to an LDAP server - www.authelia.com/overview/…/first-factor/
  
  Which I think goes towards the point in my original post - none of this is simple so I’d like a nice explanation that helps me understand what I need running, how they work together and what settings to use.
  
  source
  - cooopsspace@infosec.pub ⁨1⁩ ⁨year⁩ ago
    You probably need to realise that this is advanced self hosting here.
    
    I might suggest you start off with something a bit simpler.
    
    Run an appplicagion, point Nginx to it, get certbot and follow the instructions on their site to implement it.
    
    You need to build up to it, because Authentication is a compilation of 5-6 different basic tasks that you need to be across.
    
    source
    andy47@lemmy.world ⁨1⁩ ⁨year⁩ ago
    Thanks. I have all of that. I’ve been at this for a while and am now looking to move to centralised authentication and access management because I’ve got everything else working as I want it. It’s just not ideal to have to maintain seperate logins across each of the services that I’m running. Hence starting to look at authentication. I know it’s complex and the original post was wondering if there is a nice simple introduction to the subject matter.
    
    source
    -> View More Comments
- cooopsspace@infosec.pub ⁨1⁩ ⁨year⁩ ago
  Secure Web Application Gateway.
  
  And something like “swag selfhosted” or “swag linuxserver” would have been a better search term. You need to lead the horse at least slightly in the direction of water when it comes to Google searches.
  
  source
- theghostoutside_@aussie.zone ⁨1⁩ ⁨year⁩ ago
  Haha how good. SWAG is a reverse proxy using Nginx. I use the Docker container.
  
  source
- gdog05@lemmy.world ⁨1⁩ ⁨year⁩ ago
  I think you have to look for nginx in the swag search github.com/linuxserver/docker-swag
  
  source