| 29 May 2026 |
 K900 | With authentik or kanidm or w/e you're eventually going to run into a thing that it just Won't Do | 18:14:42 |
 hexa | kanidm fails at "sign in with github" already :p | 18:15:04 |
| K900 | Well that's more of a "we don't have that yet" | 18:16:00 |
| K900 | But yes | 18:16:07 |
 Tom | 
Download image.png | 20:22:06 |
| Tom | Redacted or Malformed Event | 20:22:22 |
| Tom | also doesn't sound like that will change (if's from their forum) | 20:22:38 |
| Tom | * also doesn't sound like that will change anytime soon (if's from their forum) | 20:24:27 |
 raitobezarius | keycloak4life | 21:18:42 |
| raitobezarius | i contributed sign in with github config to the terraform provider, ur welcome | 21:19:00 |
| hexa | what a sad life. | 21:19:17 |
| raitobezarius | also Keycloak has proper forced PKCE, DPoP and will probably have transaction tokens | 21:19:27 |
| raitobezarius | if i could put the keycloak ui on my screenlocker, i would | 21:19:46 |
| raitobezarius | keycloak can log oidc tokens | 21:26:04 |
| hexa | fine | 21:31:58 |
| hexa | I don't care too strongly anyhow | 21:32:10 |
| hexa | nobody ever got fired for running keycloak | 21:33:26 |
| 30 May 2026 |
 dish [Fox/It/She] | In reply to @hexa:lossy.network
Question is: Keycloak vs Authentik neither >:3 /jk
but i ran authentik for a while and its very complicated and heavyweight feeling so its not my preferred. no experience with keycloak so idk how it is in that regard | 00:00:01 |
| dish [Fox/It/She] | also authentik can feel slow at times >.> | 00:00:14 |
| hexa | keycloak is a java enterprise app :p | 00:02:24 |
 Bart | And Authentik is a beefy Django + Go app :p | 00:12:53 |
| hexa | If in doubt, I'd rather debug python and go over java | 00:26:49 |
| hexa | Redacted or Malformed Event | 00:26:55 |
| Bart | oh definitely | 00:46:47 |
| Bart | and authentik docs are way better than keycloak as well | 00:47:29 |
| dish [Fox/It/She] | In reply to @hexa:lossy.network
keycloak is a java enterprise app :p JVM can be fast 🤷♀️ | 01:54:31 |
| hexa | but annoying to debug | 01:54:41 |
| hexa | and not easy to patch | 01:54:49 |
| dish [Fox/It/She] | oh absolutely | 01:54:51 |
| hexa | we just fetch something pre-built in nixpkgs and tada.wav | 01:55:32 |
