LDAP is fine for authz/groups (although we don't have any in LDAP at the moment)
I think it would be nice if we had a generic SSO proxy that takes care of this and just forwards identities via nginx auth-requests.
tazjin at 2020-07-28T01·26+00
That also works, actually.
lukegb at 2020-07-28T01·26+00
And also saves me a lot of work :)
glittershark at 2020-07-28T01·26+00