SnipeIT is really good and supports SSO including via LDAP.
Selfhosted
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
Snipe-IT is mainly for IT asset and license management as far as I saw in the demo. Or is this just a demo setup? Can you customize it for the items you want to manage, e.g. groceries or tools?
SnipeIT just cares about serial numbers, models and manufacturers (you can just use a serial number in the asset tag section) for assets and I think consumables drop a bunch of those requirements. You might be able to put groceries under consumables? I’m less familiar with consumables in SnipeIT to be honest.
Possibly dumb question: why not use an Authentik outpost with a reverse proxy to enforce SSO? It wouldn't be "baked in" so to speak, but it would be fully OIDC and as long as you're just running it through a web browser. Biggest downside is you'd need 2 logins (one for the outpost and one for the app). I'd assume the sso is specifically for the extra security though, so that shouldn't be a problem outside of it being a little hassle.
That's the point. I don't want multiple logins. That's what SSO is for XD I want the SSO to be only login, like I configured any other app I have so far.
So Grocy doesn't directly support OIDC/SAML but it does support auth being passed along via the reverse proxy. This is how my grocy is configured. No double logins required.
Do you maybe have a link to the documentation for this configuration?
Years ago I tried Snipe IT. As your examples seem to be focused on household and grocery stuff, Snipe IT might be overkill, but according to documentation it supports SAML at least.