Over the past months, Onestein has sponsored the development of a set of Ansible playbooks to configure Single Sign On (SSO) for several popular open source applications.
Their intended use is to setup SSO in an internal network. Do not use these on systems connected to the internet (yet).
Currently it contains playbooks for the following applications:
- Bitwarden: part 1, part 2
- CMDBuild is being worked on
- Jenkins
- Gitlab
- Keycloak (not SSO, but the identity provider)
- Nextcloud
- Odoo . Currently tested with Odoo CE version 14 and 15.
- Xwiki
- Zabbix
These Ansible playbooks do not use roles or other advanced stuff. They are as 'flat' as possible so that a sysadmin can easily read how they work and what they do. This way it should be relatively easy to adapt they playbooks for your own organization.
If you like to add your work to this repo, please do so and send us a pull request.
We hope that in this way a large set of open source applications can get SSO functionality and that this helps to grow the usage of such applications.
If you run into errors, please open an issue.
All applications should have their own wiki page describing possible pitfalls.
This is work in progress. We hope you will find it useful. If you like it, tell others. If you don't like it, tell us.
Jeroen "Kwoot" Baten