<![CDATA[Successfully migrated the login to my Forgejo Git-Forge from an outdated installation of Authentik to a containerized Keycloak 26 with Passkey (WebAuthN) authentication 🥳]]>

<![CDATA[Successfully migrated the login to my Forgejo Git-Forge from an outdated installation of Authentik to a containerized Keycloak 26 with Passkey (WebAuthN) authentication 🥳]]>Successfully migrated the login to my Forgejo Git-Forge from an outdated installation of Authentik to a containerized Keycloak 26 with Passkey (WebAuthN) authentication 🥳

Getting the users from my FreeIPA LDAP via a secured Wireguard tunnel that only allows port 636 to the IPA replica server in my DMZ.

Works like a charm. Once the handful of users on my instance have linked their new Keycloak identity with their Forgejo account, I can disable the old OIDC with Authentik

#keycloak #oidc #authentik #forgejo #linux #devops

]]>https://board.circlewithadot.net/topic/ecc1a53d-b9d1-4046-9a63-da933c0fe2e2/successfully-migrated-the-login-to-my-forgejo-git-forge-from-an-outdated-installation-of-authentik-to-a-containerized-keycloak-26-with-passkey-webauthn-authenticationRSS for NodeMon, 06 Apr 2026 06:36:55 GMTSun, 05 Apr 2026 18:50:45 GMT60