In my usual fashion, this took a lot longer than I anticipated. I stumbled a couple of times during the video, and it gives you a chance to see how I adjust things. I hope it will be helpful to you all. I've been busy getting a lot of my stuff setup on Authentik over the past few weeks.
Thanks a lot Brian for this one. I was just on the point for installing Authentik. Still got Authelia running in the background, thanks to you also. Keep up the good work buddy, very much appreciated 👍🙏
Since you have done some Free-IPA stuff, you can also federate Authentik with Free-IPA. I find the SUDO management, SSH key management and Password+OTP features of Free-IPA a must have for me.
Awesome tutorial on the Authentik. I followed your Authelia now Authentik, much better! I would be excitied to see if we can setup Authentik with Traefik instead of NPM, if you have sometimes of course! Again, thanks for making so useful guides
@@AwesomeOpenSource I watched a fair bit of them but to be honest, none comes close to your details and straight to the point style. Installation is easy but more important is how to configure it to work with other app and for this, I have yet to see anything that is clear and easy to follow, like your other tutorials. But thank again for considering this. Cheers
I think I moved a bit of footage to an earlier part of the video there (I did something out of order essentially) to keep the video order less confusing with all my jumping around. So likely a bit left from where i cut it and moved that section. Sorry for the weirdness. I'm teaching my niece to edit for me, she's 12, and doing really great, but this was a tough one for her for sure.
I wonder if you happen to have any more insight on the "Request has been denied" message you mentioned in the video? I get this 100% of the time while trying to set up. Cleared volumes and folders, tried different browsers, cleared cache.
No, I'm sorry, I don't. I haven't seen it since then, and I've setup Authentik for about 7 or 8 of my applications to give single sign on access. You might post it on their discussion, or search their discussions at github.com/goauthentik/authentik/discussions to see if anyone there can help you.
I don't use Cloudflare tunnels, but @Cooptonian has a video with Cloudflare Tunels in the title. Here's the link to that one. Maybe it will help you out. th-cam.com/video/Fe5SttNa2lU/w-d-xo.htmlsi=Fi7SEPwk_LrJUSES
Love your work! Wondering if you can do a bit of an all encompassing video? So in my case, I have a cloudflare tunnel so as not to have ports open. External access through this works great. Internally, I have NPM running and PiHole - in PiHole I have the same DNS names as cloudflare above setup pointed to NPM - therefore getting full https support and accessing everything from the same URLS all the time. I am about to implement Authentik - but I cannot see a simple way to make the tunnels and NPM work together to then allow the authentik rules to come into play. I know I can ditch the tunnel and open ports, but I would prefer to keep this as well - love to hear your thoughts and your followers
I don't use cloudflare. It's hard for me to say what might be different there. I think it can work, but not sure I'm the right person to try and explain it.
Back to that missing piece in the video where you cut away around the 30 minute mark - can you describe it - you were typing a URL and then cut away - what was the URL? Anything else pertinent to the provider?
No, and I cut away only because it was a mistake as I recall. I show you what you need. I also cover everything in the linked show notes in the description, so you can find all the details there.
Love the video, just a quick comment at around 30min I think the section was cut to soon and it jumps from provider to application setup mid provider setup
That was an edit I made because I did things in a very weird order when I recorded it. I just re-ordered it in the video to try to make the order more sensible. Sorry for the confusion.
@@AwesomeOpenSource all good have had authentik setup for a while now was watching to see if I missed anything. Finally got my email setup and working as your video reminded me to actually do that hah. Love the videos and appreciate all the info you are Sharing on the open source community!
I recently stumbed across your channel and I have to say, I'm really impressed with the way you present. I appreciate that typically you kind of run through what the configs actually do rather than just paste in a block of code that I have no idea why we are doing that. That's very refreshing. I did have one problem with this one when I tried to follow along. Everything works exactly as you presented for me, except when I copy in the Nginx (Proxy Manager) code into the Advanced config of Nginx, that host immediately changes to Offline. I've tried it with multiple hosts and they all do the same thing. I have double and triple checked my address for the proxy_pass, but they still show Offline. When I remove the Advance config they immediately go Online. Any ideas what I may be doing wrong? I'm running version Nginx 2.11.3 in a Docker container on Proxmox 8.2.2.
First, thank you. I"m glad you like my method. My goal is to educate. I don't want it to be a bline copy and paste situation, but for others to learn and understand. As for the NGinX thing, maybe something has changed in the setup, but not sure. Last I checked everything worked for me. If you want to post over at discuss.opensourceisawesome.com I'm sure I, or someone can help you figure it out.
@@AwesomeOpenSource Thank you for your reply. I actually found that the code snippet Authentik generates in the current version has the error but going back to their previous version 2024.2 of the Authentik docs works perfectly. Thank you for helping me get SSO working in my home lab!
I'm having the exact same issue. I tried the 2024.2 snippet and while the site did display as online it was still unreachable. The Authentik instance is on a completely different server/network from the app I'm trying to connect it to. Wonder if this is the cause of the problem (for me, anyway)?
Massive chunk missing, i got to 38.03, had to stop, was frustrating trying to get it going to start, I got to the end (nearly) to find the last 2 hours wasted because I didnt know this was a follow on video, I havent set anything up from "last weeks video"
I can't get smtp to work, it's working fine on my other containers and setup correctly (I think) but authentik just won't send emails. Everything else seems to be working great though!
Check the logs on Authentik, as well as your mail server. I haven't had an issue with mail on Authentik so far, but without some logging, it's hard to know.
@AwesomeOpenSource authentik is a cool product but after several more hours of troubleshooting I'm opting for authelia or keycloak Also just ending up redoing my entire home lab and networking to clean up a bunch of older stuff while I was learning. Appreciate your reply, and thank you so much for everything you've done for the community! Love your videos and will definitely be referencing them again in the next few days getting everything re-set back up
Let me know how it goes with Keycloak if you decide to go that route. I"ll point your to @JimsGarage here on TH-cam. It's a great channel, and he's done some Keycloak content.
@AwesomeOpenSource .. I love your videos and have learnt so much from you.Would love to see a video of Nginx+Authelia video ..how to secure the apps hosted on nginx with Authelia .. if you get the time i am sure others will appreciate it too.
Not sure if you saw my Authelia video, but I did do apps with Authelia and NGinX Proxy Manager. th-cam.com/video/5KtbmrUwYNQ/w-d-xo.htmlsi=3T-LZVQKllr1ff4X Hope it's what you're looking for.
I tried Authentik before but I'm still confused about it. Now I watched your video, I'm feeling confident I can make this one work. Finally. btw, -d means detach.
I gave up. Every time I run the docker compose I get an error that postgres authentication failed and the password failed. No idea what I am doing wrong since I followed the instructions exactly. The instructions were great, just something on my end I cannot figure out and wasted too much time already.
So, make sure to delete any mapped volumes, then make sure you have a long postgres password with no special characters in it, just upper and lower case letters and numbers. Once you've done that re-run the 'docker compose up' command and watch the logs. It should come up.
That was an edit I made because I did things in a very weird order when I recorded it. I just re-ordered it in the video to try to make the order more sensible. Sorry for the confusion. Just ignore it the first time where I cut there. Apologies for that.
@@AwesomeOpenSource Thank you. Anyway, please continue with your valuable work; it has been incredibly helpful, and I've gained a lot of knowledge from your videos.
Everything worked fine for me until I added authentic custom configuration to Nginx. After pasting the authentic custom Nginx configuration, my proxy host went offline. I'm not sure what I'm missing.
Would you consider doing an integration video for Nextcloud and Authentik , i tried setting it up some months ago but had issues with the authentication and SSO also had some weird redirections on the nextcloud resulting to a failure. Great content btw as always! Keep it up Edit : Account not provisioned. Your account is not provisioned, access to this service is thus not possible. That's what I get when trying to login using Authentik SAML
I can, but I used OIDC for my Authentik to NextCloud. You have to add an extension, and once it's added you can setup the connection. I'll see what I can do.
@@AwesomeOpenSource hmm, okay I'll do some more investigation on the issue and find a workaround for SAML otherwise I'll stick with OIDC. Thanks anyway
@@rkolibri96 Unless you have a specific requirement to use SAML, OIDC should be substantially more straightforward to set up. It's a more modern protocol with a less fussy structure.
@@brerlapn I know about OIDC just wanted to try out SAML but no success, ended up changing my configuration to use OpenID instead, Authentik is pretty new to me and I'm still going through the documentation for the perfect integration with all my services ( around 30 in my current setup in my Homelab ) Thanks for your comment btw .
There are a couple of articles on setting it up. The thing that kept getting me was no matter what I selected to match on my current user and Authentik user wouldn't merge or connect up. I ended up using a different add-on in next cloud that then allows each user to go in and setup Social Login on their account. Kind ofa pain, but at least it provides SSO. If your users don't have any nextcloud account yet, then you can use the official add-on as it will provision one. You can also do the reverse and use nextcloud as your OIDC provider for other applications, which is pretty interesting to me.
You can setup registration and invitations in Authentik, though it's not setup that way by default. I'll refer you to @cooptonian for the video on setting up Invites and registration. th-cam.com/video/mGOTpRfulfQ/w-d-xo.htmlsi=FsKHv7T-MoeJspZy
After a recent password breech at work, we are now looking at ways to improve security. This piked my interest, but I was wondering if anyone has any links or other videos that show example use cases sort of thing for using this in a business environment, specifically currently using Active Directory. Like can this sit beside active directory and sync passwords and such, also will theis let me use MFA with Active Directory? Out current setup is Active Directory (Local) and It syncs to Google for Work/Gsuite/Google Apss or whatever name it has now days. WOuld be nice to be able to enable MFA for all users (around 40) and have a single authentication for everything like RDS, Intranet, pfsense, etc etc....
I don't have any real Active Directory experience. that said you should just ask the folks at Authentik. I'm sure they'd be happy to tell you what all it's capable of with respect to AD.
I've followed your guide with nginx reverse proxy and tried to put authentic on the top of heimdal (dashy alternative) whats happening in my case is that after successful authentication authentic redirects me to local ip rather fqdm. Any tips what I might have done wrong?
In your authentic provider, you should have a place for a redirect URL, make sure to fill that with the fqdn. It can autofill sometimes, but sometimes it just guesses.
@@AwesomeOpenSource It seems like its specific to Heimdall only all other reverse proxied apps are working just fine. Fantastic video guide from you like always!
TBH someone that "fiddles around" with something like Authentik doesn't need an introduction of the concept of "hidden" files in Linux! They should have a somewhat solid foundational knowledge about this concept of Linux in order to have any chance of having a running service. Maybe have at the start of video a short segment of what prior knowledge is recommended in order to be successful. Maybe make some videos of these basic topic and point to them if needed. IMO these little titbits of very basic stuff clutters the video a bit and that is why they are over 40 mins long.
I somewhat agree, but I also know some people are semi-advanced users coming from Windows where hidden files are handled very differently. So I find it worth while to say the things we may find simple, as it may just help someone realize something they may not have been introduced to on another OS.
In my usual fashion, this took a lot longer than I anticipated. I stumbled a couple of times during the video, and it gives you a chance to see how I adjust things. I hope it will be helpful to you all. I've been busy getting a lot of my stuff setup on Authentik over the past few weeks.
You are an excellent teacher! Thank you for everything you do!
You are so welcome!
Thanks a lot for making videos that make complex things easy to understand, Not only "Open Source" but also Brian is awesome
I truely appreciate that! Thank you!
Thanks for the reference, keep up the great work, love the channel! Congratulations on 100k 🎉
Thank you as well. Love the stuff you're doing too. Well done!
Thanks a lot Brian for this one. I was just on the point for installing Authentik. Still got Authelia running in the background, thanks to you also. Keep up the good work buddy, very much appreciated 👍🙏
Absolutely my pleasure.
Wow, Authentik is "fantastik" ! Thanks for this !
Glad you like it!
Ooh, this is something relevant to my interests and professional tasks. Will have to keep this in mind for future projects
That's awesome! Let me know how it goes.
Since you have done some Free-IPA stuff, you can also federate Authentik with Free-IPA. I find the SUDO management, SSH key management and Password+OTP features of Free-IPA a must have for me.
Awesome Tip! Thank you for that.
is it me or is there an gap in the video at (about) 29:50?
There's a small jump, sorry about that. Editing issues.
As usual, great video! Thanks for the shout-out!😁
My pleasure!
Just came across your vid whilst browsing around. Brilliant - didnt know about this - or about the other youtubers you mentioned.
Hope it's helpful.
Awesome tutorial on the Authentik. I followed your Authelia now Authentik, much better! I would be excitied to see if we can setup Authentik with Traefik instead of NPM, if you have sometimes of course! Again, thanks for making so useful guides
Let me see. There are a few others who cover using Trraefik more than I do, but let me see what I come up with.
@@AwesomeOpenSource I watched a fair bit of them but to be honest, none comes close to your details and straight to the point style. Installation is easy but more important is how to configure it to work with other app and for this, I have yet to see anything that is clear and easy to follow, like your other tutorials. But thank again for considering this. Cheers
Great video tutorial however it video cuts out after 29:50
I just checked it, doesn't cut out for me. Maybe something happened with your feed?
theres a missing section between providers and applications around 30:16
It’s not missing. I just edited to put things in proper order instead of my crazy brained order. Sorry for the confusion on that.
Is it just me or is there some footage missing at 30:03 ?
I also noticed a glimpse
Plus the provider type is changed to proxy when we see it again after the footage blip
I think I moved a bit of footage to an earlier part of the video there (I did something out of order essentially) to keep the video order less confusing with all my jumping around. So likely a bit left from where i cut it and moved that section. Sorry for the weirdness. I'm teaching my niece to edit for me, she's 12, and doing really great, but this was a tough one for her for sure.
@@AwesomeOpenSource No worries, will follow it further when I install it myself...
No pb, for my side, I just noticed a glimpse but no "no sense" in the editing" 🙂
I wonder if you happen to have any more insight on the "Request has been denied" message you mentioned in the video? I get this 100% of the time while trying to set up. Cleared volumes and folders, tried different browsers, cleared cache.
No, I'm sorry, I don't. I haven't seen it since then, and I've setup Authentik for about 7 or 8 of my applications to give single sign on access. You might post it on their discussion, or search their discussions at github.com/goauthentik/authentik/discussions to see if anyone there can help you.
Great video! Really helpful.
Glad it was helpful!
Can you also create a video for how this works with Cloudflare tunnels?
I don't use Cloudflare tunnels, but @Cooptonian has a video with Cloudflare Tunels in the title. Here's the link to that one. Maybe it will help you out. th-cam.com/video/Fe5SttNa2lU/w-d-xo.htmlsi=Fi7SEPwk_LrJUSES
Love this, thank you!
You're so welcome!
Love your work!
Wondering if you can do a bit of an all encompassing video?
So in my case, I have a cloudflare tunnel so as not to have ports open. External access through this works great.
Internally, I have NPM running and PiHole - in PiHole I have the same DNS names as cloudflare above setup pointed to NPM - therefore getting full https support and accessing everything from the same URLS all the time.
I am about to implement Authentik - but I cannot see a simple way to make the tunnels and NPM work together to then allow the authentik rules to come into play.
I know I can ditch the tunnel and open ports, but I would prefer to keep this as well - love to hear your thoughts and your followers
I don't use cloudflare. It's hard for me to say what might be different there. I think it can work, but not sure I'm the right person to try and explain it.
Back to that missing piece in the video where you cut away around the 30 minute mark - can you describe it - you were typing a URL and then cut away - what was the URL? Anything else pertinent to the provider?
No, and I cut away only because it was a mistake as I recall. I show you what you need. I also cover everything in the linked show notes in the description, so you can find all the details there.
Love the video, just a quick comment at around 30min I think the section was cut to soon and it jumps from provider to application setup mid provider setup
That was an edit I made because I did things in a very weird order when I recorded it. I just re-ordered it in the video to try to make the order more sensible. Sorry for the confusion.
@@AwesomeOpenSource all good have had authentik setup for a while now was watching to see if I missed anything. Finally got my email setup and working as your video reminded me to actually do that hah.
Love the videos and appreciate all the info you are Sharing on the open source community!
I would recommend wget official compose file (see official docker documentation).
The script I use to install docker and docker compose installs it from the github repository.
I'm getting an awful lot of warnings in orange, not sure if its stuck on a loop been running for 45 mins so far.
I recently stumbed across your channel and I have to say, I'm really impressed with the way you present. I appreciate that typically you kind of run through what the configs actually do rather than just paste in a block of code that I have no idea why we are doing that. That's very refreshing.
I did have one problem with this one when I tried to follow along. Everything works exactly as you presented for me, except when I copy in the Nginx (Proxy Manager) code into the Advanced config of Nginx, that host immediately changes to Offline. I've tried it with multiple hosts and they all do the same thing. I have double and triple checked my address for the proxy_pass, but they still show Offline. When I remove the Advance config they immediately go Online. Any ideas what I may be doing wrong? I'm running version Nginx 2.11.3 in a Docker container on Proxmox 8.2.2.
First, thank you. I"m glad you like my method. My goal is to educate. I don't want it to be a bline copy and paste situation, but for others to learn and understand. As for the NGinX thing, maybe something has changed in the setup, but not sure. Last I checked everything worked for me. If you want to post over at discuss.opensourceisawesome.com I'm sure I, or someone can help you figure it out.
@@AwesomeOpenSource Thank you for your reply. I actually found that the code snippet Authentik generates in the current version has the error but going back to their previous version 2024.2 of the Authentik docs works perfectly. Thank you for helping me get SSO working in my home lab!
I'm having the exact same issue. I tried the 2024.2 snippet and while the site did display as online it was still unreachable. The Authentik instance is on a completely different server/network from the app I'm trying to connect it to. Wonder if this is the cause of the problem (for me, anyway)?
Massive chunk missing, i got to 38.03, had to stop, was frustrating trying to get it going to start, I got to the end (nearly) to find the last 2 hours wasted because I didnt know this was a follow on video, I havent set anything up from "last weeks video"
gr8 video as always.... how about a keycloak now ? O:-)
Let me see what I can figure out with it.
I can't get smtp to work, it's working fine on my other containers and setup correctly (I think) but authentik just won't send emails. Everything else seems to be working great though!
Check the logs on Authentik, as well as your mail server. I haven't had an issue with mail on Authentik so far, but without some logging, it's hard to know.
@AwesomeOpenSource authentik is a cool product but after several more hours of troubleshooting I'm opting for authelia or keycloak
Also just ending up redoing my entire home lab and networking to clean up a bunch of older stuff while I was learning.
Appreciate your reply, and thank you so much for everything you've done for the community! Love your videos and will definitely be referencing them again in the next few days getting everything re-set back up
Let me know how it goes with Keycloak if you decide to go that route. I"ll point your to @JimsGarage here on TH-cam. It's a great channel, and he's done some Keycloak content.
Thanks for sharing. What's your view on Teleport ?
I've heard about it, but never tried it. So not really sure. I'll have to add it to my list. If I can self host it, I'll most likely like it.
recently discovered your chanel, it's very neat. props on explaining all that .yml options. love it. insta subsribe
That's awesome! Thanks for subscribing.
@AwesomeOpenSource .. I love your videos and have learnt so much from you.Would love to see a video of Nginx+Authelia video ..how to secure the apps hosted on nginx with Authelia .. if you get the time i am sure others will appreciate it too.
Not sure if you saw my Authelia video, but I did do apps with Authelia and NGinX Proxy Manager. th-cam.com/video/5KtbmrUwYNQ/w-d-xo.htmlsi=3T-LZVQKllr1ff4X Hope it's what you're looking for.
I my case open "not found" 19:15
I tried Authentik before but I'm still confused about it. Now I watched your video, I'm feeling confident I can make this one work. Finally.
btw, -d means detach.
I hope it helps you out.
I gave up. Every time I run the docker compose I get an error that postgres authentication failed and the password failed. No idea what I am doing wrong since I followed the instructions exactly. The instructions were great, just something on my end I cannot figure out and wasted too much time already.
So, make sure to delete any mapped volumes, then make sure you have a long postgres password with no special characters in it, just upper and lower case letters and numbers. Once you've done that re-run the 'docker compose up' command and watch the logs. It should come up.
Thank you! I had a little trouble after deleting the volumes with it not being able to find/create a directory, but I got it installed. Thanks again!
I have only one problem now after i make proxy reverse and copy the script to nigx proxy server the host go offline i don't what the problem
is this some kind of "keycloak" alternative?
I suppose you could look at it that way. It’s an authentication system that supports Proxy, OIDC OAuth2.0, LDAP and more.
Hello Brian, please help. I'm lost after 30 minute mark. You inputted http and then it was cut out. What did you type?
That was an edit I made because I did things in a very weird order when I recorded it. I just re-ordered it in the video to try to make the order more sensible. Sorry for the confusion. Just ignore it the first time where I cut there. Apologies for that.
@@AwesomeOpenSource Thank you. Anyway, please continue with your valuable work; it has been incredibly helpful, and I've gained a lot of knowledge from your videos.
Eres genial!
Muchas Gracias!
while creating the reverse proxy, what should I do if don't own a DNS. Is there any alternative to set it up locally for testing purpose?
You can use a local domain, and you need to resolve it on your LAN properly.
Everything worked fine for me until I added authentic custom configuration to Nginx. After pasting the authentic custom Nginx configuration, my proxy host went offline. I'm not sure what I'm missing.
Hmmm. Did you get that from the Authentik site?
@@AwesomeOpenSource, I got it working. I Tried using the OAuth2/OpenID provider with Portainer. I tried with EmulatorJS, but couldn't get it to work.
@@AwesomeOpenSource Got it working!! Thanks for the reply.
@@sensemakedollars8715 glad you got it my friend.
I have the same issue how you solve
Would you consider doing an integration video for Nextcloud and Authentik , i tried setting it up some months ago but had issues with the authentication and SSO also had some weird redirections on the nextcloud resulting to a failure.
Great content btw as always!
Keep it up
Edit : Account not provisioned.
Your account is not provisioned, access to this service is thus not possible.
That's what I get when trying to login using Authentik SAML
I can, but I used OIDC for my Authentik to NextCloud. You have to add an extension, and once it's added you can setup the connection. I'll see what I can do.
@@AwesomeOpenSource hmm, okay I'll do some more investigation on the issue and find a workaround for SAML otherwise I'll stick with OIDC. Thanks anyway
@@rkolibri96 Unless you have a specific requirement to use SAML, OIDC should be substantially more straightforward to set up. It's a more modern protocol with a less fussy structure.
@@brerlapn I know about OIDC just wanted to try out SAML but no success, ended up changing my configuration to use OpenID instead, Authentik is pretty new to me and I'm still going through the documentation for the perfect integration with all my services ( around 30 in my current setup in my Homelab )
Thanks for your comment btw .
There are a couple of articles on setting it up. The thing that kept getting me was no matter what I selected to match on my current user and Authentik user wouldn't merge or connect up. I ended up using a different add-on in next cloud that then allows each user to go in and setup Social Login on their account. Kind ofa pain, but at least it provides SSO. If your users don't have any nextcloud account yet, then you can use the official add-on as it will provision one. You can also do the reverse and use nextcloud as your OIDC provider for other applications, which is pretty interesting to me.
What would happen to sign ups?
Would it handle signing up for a user if he doesn't have any credentials?
You can setup registration and invitations in Authentik, though it's not setup that way by default. I'll refer you to @cooptonian for the video on setting up Invites and registration. th-cam.com/video/mGOTpRfulfQ/w-d-xo.htmlsi=FsKHv7T-MoeJspZy
After a recent password breech at work, we are now looking at ways to improve security. This piked my interest, but I was wondering if anyone has any links or other videos that show example use cases sort of thing for using this in a business environment, specifically currently using Active Directory. Like can this sit beside active directory and sync passwords and such, also will theis let me use MFA with Active Directory? Out current setup is Active Directory (Local) and It syncs to Google for Work/Gsuite/Google Apss or whatever name it has now days.
WOuld be nice to be able to enable MFA for all users (around 40) and have a single authentication for everything like RDS, Intranet, pfsense, etc etc....
I don't have any real Active Directory experience. that said you should just ask the folks at Authentik. I'm sure they'd be happy to tell you what all it's capable of with respect to AD.
Thank you for this one, i was looking for å way to use authentik.
Can you also do one on Minio?
Minio is on my list. So, definitely coming in the future.
Never been this early to any video, ever
Glad you made it! Hope it's useful.
I've followed your guide with nginx reverse proxy and tried to put authentic on the top of heimdal (dashy alternative) whats happening in my case is that after successful authentication authentic redirects me to local ip rather fqdm. Any tips what I might have done wrong?
In your authentic provider, you should have a place for a redirect URL, make sure to fill that with the fqdn. It can autofill sometimes, but sometimes it just guesses.
@@AwesomeOpenSource It seems like its specific to Heimdall only all other reverse proxied apps are working just fine. Fantastic video guide from you like always!
Just right after i set up Authelia lol.
Like I said, if Authelia is working for you, then there's no need to jump over to Authentik, it's just another option.
Would you make a video of the authelia+nginx configuration ?
When you say nginx with authelia, what are you looking for specifically?
TBH someone that "fiddles around" with something like Authentik doesn't need an introduction of the concept of "hidden" files in Linux! They should have a somewhat solid foundational knowledge about this concept of Linux in order to have any chance of having a running service.
Maybe have at the start of video a short segment of what prior knowledge is recommended in order to be successful. Maybe make some videos of these basic topic and point to them if needed.
IMO these little titbits of very basic stuff clutters the video a bit and that is why they are over 40 mins long.
I somewhat agree, but I also know some people are semi-advanced users coming from Windows where hidden files are handled very differently. So I find it worth while to say the things we may find simple, as it may just help someone realize something they may not have been introduced to on another OS.
lol watching the same creators
I watch so many great channels. Most of them do such a great job making things concise and entertaining at the same time.
Its only available in containers? I can install it like keycloak as systems service?
Here's a repo that will help you install authentik on bare metal. github.com/gtsatsis/authentik-bare-metal Hope it helps.