WARNING: Traditional use of centralised identity service (like Keycloak) transfers the security of your data away from you to someone else, that is against all the principles of compute ownership. Centralised identity services should NOT be used without the Dynamic Alias safeguards.

Keycloak

As of 2024-11-01, Keycloak is being used as an Login Service for access to millions of existing online applications through standard protocols like OpenID Connect, OAuth 2.0 and SAML 2.0.

• https://www.keycloak.org/

Support

• https://keycloak.discourse.group/

Tips:

1. Set up with nginx
   Reddit - Dive into anything

2. Make it look good
   Server Developer Guide

Authentication Web Proxy

For web application that does NOT have built in OIDC or SAML, a proxy can be put in front as an extra layer of protection.

Compatible Software

Non-Free Software

Some software charges for their Identity Server (Single Sign On) features: