I’ve just looked at some tutorials for Keycloak and Authentik and there’s definitely a very steep learning curve for these two solutions. I feel like I need something a lot simpler to be able to fully grasp the concept.

What is the easiest solution for beginners to implement Sigle-Sign-On for their selfhosted services?

    • Lemmchen@feddit.orgOPEnglish
      4·
      1 month ago

      I’d love to use PocketID, but I fear my users aren’t really set up to use passkeys (they’re awesome!) and I assume they wouldn’t work on the Android TV Jellyfin client (does anybody have experience with that?).

      • Chaser@lemmy.zipEnglish
        4·
        1 month ago

        That may be a problem, because Pocket ID works with Passkeys only. But you can also configure Emails, so your users can get one time login links.

        Regarding Jellyfin: You can login on your phone using oidc. On the TV you can use Quick Connect then

        • Lemmchen@feddit.orgOPEnglish
          2·
          1 month ago

          If they can use their phones to log in with passkeys this might just work, hmm. I’ll definitely take a closer look at that then. Thank you!

          Edit:
          That’s very unfortunate as my users will basically only use the Android or Android TV app and not a browser. Maybe it’s not too bad if it is a one time thing, but it definitely makes it not ideal.

          • Chaser@lemmy.zipEnglish
            3·
            1 month ago

            Jellyfin is actually the only self hosted service I don’t use LDAP or OIDC on purpose. Jellyfin is used only by me, my wife and sometimes a guest. So I just created the accounts by hand. I did so, because I want empty passwords there, so we can easily login. On the android tv app the login screen behaves like the Netflix profile selection screen, if the passwords are empty.