On Mon, Oct 17, 2022 at 11:57 AM Bastian Blank <wa...@debian.org> wrote: > > Everyone coming up with solutions, please review the old thread about > that > https://lists.debian.org/msgid-search/20200405184610.ga581...@waldi.eu.org
Keycloak also provides OpenID Connect / OAuth2 and can connect to LDAP servers - so it is not really "intrusive" in that sense. For websites using the SSO the switch would probably just changing a URL, which of course opens the question what the advantage of Keycloak over the current Gitlab based solution would be. I guess Keycloak integrates better to LDAP and has more user management tools, but that doesn't mean the work is worth it. I just wanted to point out a solution in case we want a new SSO. Cheers, Stephan
