| 28 May 2026 |
 John Ericson | thank you! | 17:39:52 |
 Jeremy Fleischman (jfly) | phew! sorry for the outage. glad things are working again | 17:40:23 |
| John Ericson | no problem! | 17:40:35 |
| John Ericson | it's a php thing, brekage is expected | 17:40:43 |
| John Ericson | the important thing is having a good infra team to fix it when it does :) | 17:40:52 |
| 29 May 2026 |
 mdaniels5757 | Is there a reason the nixos/unstable jobset has evaluations disabled (I assume that's what negative means)? https://hydra.nixos.org/jobset/nixos/unstable#tabs-configuration | 02:34:29 |
 Vladimír Čunát | Negative means manual trigger, yes. | 05:34:53 |
| Vladimír Čunát | Builds for the 26.05 release had priority right now. | 05:35:24 |
| Vladimír Čunát | But I believe it's ready at this point, and we got a nixos/unstable eval. (which is nice, as unstable is still on a 5 days old commit) | 05:41:59 |
|  lassulus changed their profile picture. | 07:06:18 |
|  Skoh joined the room. | 15:38:42 |
 leona | Hetzner will increase prices for new orders starting June 15: https://www.hetzner.com/pressroom/standardization-and-price-adjustment-of-our-server-products/. So likely order now if you need something | 17:21:36 |
 hexa | ax162-r orders are already too expensive with over 1k setup | 17:24:59 |
| hexa | and ampere machines have been unavailable for a long while | 17:25:15 |
| hexa | might order a vm for a new part of infra, if I can allocate one in time | 17:25:37 |
| hexa | tl;dr is we want glitchtip, because we can't really have sentry at home | 17:30:19 |
| hexa | And I want scoped auth and the simplest solution would be a local dex instance | 17:30:51 |
| hexa | But the more interesting solution long-term would be a full idp | 17:31:21 |
| hexa | And I would want that on a dedicated VM tbh | 17:31:39 |
| hexa | Question is: Keycloak vs Authentik | 17:47:15 |
| Jeremy Fleischman (jfly) | I found Keycloak's UI arcane enough that I needed a tool to manage it (I used pulumi, but I imagine terraform would work).
I wouldn't be surprised if Authentik is similar, though. Probably just the nature of the problem space.
| 17:51:57 |
| leona | ideally you know all of the specs by heart if you use keycloak ^^ it's actually much more complicated than the other UIs of the other tools, but it can do anything | 17:57:01 |
| hexa | I have deployed keycloak before, around the Quarkus upgrade. It does offer all the features. | 18:07:56 |
| hexa | But what we mostly need is bridging the gap from where our existing users are. | 18:08:20 |
| hexa | And if someone can recommend Authentik over Keycloak I'm here to listen. | 18:12:26 |
 Marcel | It can be configured declerativly :) | 18:12:44 |
| Marcel | * | 18:13:02 |
| Marcel | ive used both before - there are pretty similar, authentik has an ldap interface (ive never tried it) and has some nice debugging features (you can inspect the id token e.g. in keycload you always had to hack into your applications or had to curl endpoints) | 18:14:05 |
 K900 | I am a certified keycloak hater | 18:14:07 |
| K900 | But I will say that keycloak is probably the only thing I've seen that can do anything | 18:14:19 |
