this post was submitted on 18 Apr 2024
33 points (83.7% liked)

Selfhosted

40696 readers
364 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
 

Hi, recently I started using authelia, and can't understand how I need to use it, and how do I share it with others

Before I had bitwarden, kept all my passwords there, and used the passwords to login to every service. Also in every service I had 2FA and/or FIDO.

But now I have authelia, and I'm trying to understand where should be the main password, and what services do I bypass, and etc

And the most important, how do I explain people how to use it, do I create them authelia credentials and send, or how?

Thank you

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 11 points 8 months ago (1 children)

Authelia is an authentification provider. So you can have a single login for all your services. It can provide autorisation and authentification with a single unified login.

Bitwarden is much "simpler", in it's just a passwordmanager. As soon as you start sharing passwords, like you do in bitwarden, you lose the authentification part, even worse, you lose control over the shared login. Anyone with autorisation can "steal" the login as in unauthorized copying/distributing the password or even changing the password alltogether.

With an sso like authelia you can mitigate such attack vectors.

[–] Gooey0210 -2 points 8 months ago

I didn't get it 😅

I see a big problem in every approach, probably because I don't understand something

When i'm using just bitwarden, all my passwords for every service are different, but the ui is opened for anyone to see

When I use authelia without oidc I add complexity of using the services, and probably two passwords to type manually, or a locked down system(which is cool)

And if I use authelia with oidc, it means I have only one password for all of the services (manual, or in bitwarden (which has its own manual password))