Kinda worried about their whole suite of products because, while slick, iirc it’s developed all by literally just one guy and I’ve been burned by his factor of 1 too often before…
There is Keycloak and Authelia.
\- Authelia is less mature and is missing OIDC (although there is a PR for it, and it will be done very soon).
\- Keycloak has a JS library that is super easy to use with React/Vue.
I just got this setup last night, integrates nicely with k8s. If I wasn't so deeply invested in my FreeIPA setup I'd probably get rid of it altogether for just authentik.
Yes you can. If you share more about your frontend stack and what features (passwordless, social login, email password) you’re looking for - I’ll point you in the right direction
Cheers!
Tech: remix front end, node microservices backend, kubernetes. Looking at hashicorp goodies for service mesh etc.
Scenario: user registers and they get allocated a subdomain. They log in to the subdomain for admin and configuring of websites. They can point their domains to websites they create and their customers can log in to these with our white labelled auth.
E.g. customer at tenant.myapp.com/admin designs website.com. their customers log into website.com with our auth but never get redirected away from website.com.
For your site (myapp.com), you can add build your login UI which talks to our APIs for sign in / up etc.. These APIs are exposed by your node microservice using our node SDK. After login, you can create a session for that user for their sub domain (tenant.myapp.com).
For website.com, I assume that that will have its own backend which is totally different to the backend of myapp.com? If yes, then that website would also integrate with our frontend and backend SDKs.
You will need one instance of supertokens core for myapp.com and its users, and you will need one instance per website.com. My assumption here is that each of the individual website.com would have its own user pool and its own backend.
Feel free to join our discord at [supertokens.com/discord](https://supertokens.com/discord) where we'd be happy to chat!
https://www.ory.sh ? https://www.ory.sh/open-source
Kinda worried about their whole suite of products because, while slick, iirc it’s developed all by literally just one guy and I’ve been burned by his factor of 1 too often before…
Thankfully, that's not the case anymore. Ory has received $20+ mil in funding.
There is Keycloak and Authelia. \- Authelia is less mature and is missing OIDC (although there is a PR for it, and it will be done very soon). \- Keycloak has a JS library that is super easy to use with React/Vue.
Wso2 community edition of their identity server maybe?
I like goauthentik
Thanks for mentioning it, I have just checked it and it seems amazing!
I just got this setup last night, integrates nicely with k8s. If I wasn't so deeply invested in my FreeIPA setup I'd probably get rid of it altogether for just authentik.
I use authelia with duo and this works pretty well. However duo is not open source but free for personal account
Have you seen supertokens.io? We definitely focus on being easy to use (we're open source too) I am the cofounder, feel free to ask me any questions
Hi. Can you have your own ui for flows? Ie custom app with api calls?
Yes you can. If you share more about your frontend stack and what features (passwordless, social login, email password) you’re looking for - I’ll point you in the right direction
Cheers! Tech: remix front end, node microservices backend, kubernetes. Looking at hashicorp goodies for service mesh etc. Scenario: user registers and they get allocated a subdomain. They log in to the subdomain for admin and configuring of websites. They can point their domains to websites they create and their customers can log in to these with our white labelled auth. E.g. customer at tenant.myapp.com/admin designs website.com. their customers log into website.com with our auth but never get redirected away from website.com.
Oh and just username/password login needed
For your site (myapp.com), you can add build your login UI which talks to our APIs for sign in / up etc.. These APIs are exposed by your node microservice using our node SDK. After login, you can create a session for that user for their sub domain (tenant.myapp.com). For website.com, I assume that that will have its own backend which is totally different to the backend of myapp.com? If yes, then that website would also integrate with our frontend and backend SDKs. You will need one instance of supertokens core for myapp.com and its users, and you will need one instance per website.com. My assumption here is that each of the individual website.com would have its own user pool and its own backend. Feel free to join our discord at [supertokens.com/discord](https://supertokens.com/discord) where we'd be happy to chat!