Paco Hope #resist<p>So I was messing with <a href="https://infosec.exchange/tags/drupal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>drupal</span></a> in the <a href="https://infosec.exchange/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>homelab</span></a> and I wanted to turn on <a href="https://infosec.exchange/tags/SSO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSO</span></a> with <a href="https://infosec.exchange/tags/authentik" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>authentik</span></a>.</p><p>Somehow I didn’t find the official drupal OIDC module, I found this other one. I installed it, got it configured, and the first time I tried to login, it said “whoops, you have to purchase this module to use it.” Fine. I like supporting software, what does it cost?</p><p>$250/year!? To LOG IN? F that. </p><p>One of its key selling points is how easy it is to configure. If I was configuring it often, maybe I could see that. But OIDC and SAML are the kinds of things you set up once per lifetime. Make it as hard as you want (many apps do!) I only have to get through it once.</p><p>I mean $10? Even as much as maybe $50 I might have paid once. But I refuse to pay annually for the ability to login. <br><a href="https://infosec.exchange/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>selfhosted</span></a></p>