Larvitz  16h ago

I run 21 OCI containers with Podman (and Quadlets!) on my ARM aarch64 server on Netcup with Red Hat Enterprise Linux (RHEL) 10.1. Memory utilization is a bit high, but the system is working absolutely stable for months.

TLS certificates and ingress-routing is handled fully automatically by Traefik and labels, attached to the containers.

Having everything containerized, makes it really easy to clean up 🙂 There's some applications, that I don't even use anymore. Time to clean up.

Then I'll continue, replacing the old Authentik installation with Keycloak for my OIDC applications (Forgejo, Wallos etc.)

#linux #redhat #rhel #podman #devops #containers #forgejo #netcup

Show threadreep15h ago
@Larvitz Why do you replace Authentik with Keycloak? I always found keycloak too heavy, Authentik seemed far easier to handle, especially in a home lab. And isn't it a lot of hassle to switch all services from one to the other?
I'm truely interested in your arguments that justify the effort.
Show threadLarvitz  

@reep Keycloak WAS heavy before version 20. Now it's a super lightweight, cloud-native application with Quarkus.

My main reason to switch is the better compatibility with Ansible (the collections for Keycloak >20 for automation are just very very good imho)

12:41pmWeb
Show threadreep15h ago
@Larvitz Thanks a lot! I'm working on my home lab, too. But not that much automation. Wanted to be sure not missing sth. important 😃