https://www.pistack.xyz/tags/identity/Recent content in Identity on Pi StackHugoen-usTue, 21 Apr 2026 00:00:00 +0000https://www.pistack.xyz/posts/2026-04-21-casdoor-vs-zitadel-vs-authentik-lightweight-sso-guide-2026/Tue, 21 Apr 2026 00:00:00 +0000https://www.pistack.xyz/posts/2026-04-21-casdoor-vs-zitadel-vs-authentik-lightweight-sso-guide-2026/<h2 id="why-self-host-your-single-sign-on-provider">Why Self-Host Your Single Sign-On Provider?</h2> <p>Authentication is the foundation of every service you run. Whether you manage a homelab with a dozen applications or operate a multi-team infrastructure with hundreds of services, users need a reliable, secure way to log in once and access everything. Cloud-hosted SSO providers — Okta, Auth0, Microsoft Entra ID — charge per active user, impose rate limits, and store your user data on their servers. For organizations handling sensitive data or operating under data residency regulations (GDPR, HIPAA, SOC 2), handing authentication to a third party introduces compliance risk and ongoing cost.</p>https://www.pistack.xyz/posts/self-hosted-ldap-directory-servers-openldap-389ds-freeipa-guide-2026/Fri, 17 Apr 2026 00:00:00 +0000https://www.pistack.xyz/posts/self-hosted-ldap-directory-servers-openldap-389ds-freeipa-guide-2026/<p>Every growing infrastructure eventually hits the same wall: user accounts scattered across servers, services, and applications with no single source of truth. Passwords managed manually. SSH keys copied by hand. Service accounts created and forgotten. The solution has existed for decades — an LDAP direct<a href="https://www.ory.sh/">ory</a> server — but choosing and configuring one remains daunting.</p>