TL;DR: I spend 11 month developing a set of playbooks to configure SSO for several open source application and a Keycloak identity server. In my talk I present the process and some gotchas.

To help sysadmins everywhere the Dutch Onestein organization (specialized in Odoo implementations) invested 11 month of research to create a set of easy to use Ansible playbooks to configure single sign on (SSO) for popular open source applications to enable them to authenticate to a Keycloak server as the central identity provider.

These playbooks have been published on https://github.com/onesteinbv/project_single_sign_on.

The list of supported applications are currently:

Bitwarden CMDBuild Jenkins Gitlab Keycloak (not SSO, but the identity provider) Nextcloud, Odoo Xwiki Zabbix.

All playbooks and servers are for Ubuntu servers and are meant to be used as a starting point. TL;DR: I spend 11 month developing a set of playbooks to configure SSO for several open source application and a Keycloak identity server. In my talk I present the process and some gotchas.

To help sysadmins everywhere the Dutch Onestein organization (specialized in Odoo implementations) invested 11 month of research to create a set of easy to use Ansible playbooks to configure single sign on (SSO) for popular open source applications to enable them to authenticate to a Keycloak server as the central identity provider.

These playbooks have been published on https://github.com/onesteinbv/project_single_sign_on.

The list of supported applications are currently:

Bitwarden CMDBuild Jenkins Gitlab Keycloak (not SSO, but the identity provider) Nextcloud, Odoo Xwiki Zabbix.

All playbooks and servers are for Ubuntu servers and are meant to be used as a starting point.