TCB13Apr 25, 2025

🛡️ uSentry - Identity & Access Management

https://lemmy.world/post/28692919

🛡️ uSentry - Identity & Access Management - Lemmy.World

uSentry is a lightweight, self-hosted Identity and Access Management (IAM) and Single Sign-On (SSO) solution designed for homelab and small-scale environments. ⚡ A single PHP file. < 400 lines of code. No database. No background processes. No cloud. Just works. ⚡ Most IAM and SSO solutions require databases, certificates and background services baked into a dozen containers. This is all fine but also also overkill for homelabs and impossible for low-power ARM devices. uSentry is different, it isn’t pretty but it sucks less for a lot of use cases. Enjoy!

Show threadXanza
I’m torn between this being fucking genius, and a terrible idea all at once.
Apr 25, 2025 at 4:57pmWeb
Show threadTCB13Apr 25, 2025

Well, me too. But frankly OpenIAM (24GB of RAM as a requirement) Keycloak, Authelia do too much, require too much and aren’t suitable at all for SBCs and small scale stuff.

Edit: This is targeted at people that run nginx as a standalone server or proxy.

Show threadXanzaApr 25, 2025
I respect it.
Show threadneodcApr 25, 2025
I didn’t test, but should be possible with forward_auth (caddyserver.com/docs/caddyfile/…/forward_auth)
Caddy - The Ultimate Server with Automatic HTTPS

Caddy is a powerful, enterprise-ready, open source web server with automatic HTTPS written in Go

Caddy Web Server
Show threadXanzaApr 25, 2025
Nice! I’ll give it a try.
Show threadTCB13Apr 25, 2025
If you manage to make it worth with Caddy can you share your config? I can add it to the readme or something. Thanks.
Show threadXanzaApr 26, 2025
For sure. I’m likely gonna take a look at it this weekend.