Onze CFP is geopend! [Evenement] [CFP-portaal] [CFP details en tips]

Jeroen Baten - Making Ansible Playbooks to Configure Single Sign-on for Popular Open Source Applications


TL;DR: I spend 11 months developing a set of playbooks to configure SSO for several open source applications and/to a Keycloak identity server. In my talk I present the process and some gotchas.

The Dutch Onestein organization (specialized in Odoo implementations) invested 11 months of research. Goal was to create a set of easy to use Ansible playbooks to configure single sign-on (SSO) for popular open source applications. This would enable them to authenticate to a Keycloak server as the central identity provider.

These playbooks have been published on https://github.com/onesteinbv/project_single_sign_on and are meant to be a starting point.

The list of supported applications are currently:

  • Bitwarden
  • CMDBuild
  • Jenkins
  • Gitlab
  • Nextcloud
  • Odoo
  • Xwiki
  • Zabbix


Jeroen Baten is an IT consultant and specializes in Linux and open source software. He is particularly interested in complex technical and policy issues. Jeroen is sometimes active as JeroenBaten on Mastodon and Kwootman on X, but he actually tries to avoid social media as much as possible. His professional career can be found on LinkedIn, where he sometimes also posts posts about relevant topics in his field. His personal blog can be found at https://www.jeroenbaten.nl. As a hobby he likes to read, he collects AS/400 systems and enjoys playing with synthesizers and computers.